Towards a verified first-stage bootloader in Coq
Author(s)
Straznickas, Zygimantas.
Download1193030814-MIT.pdf (354.5Kb)
Other Contributors
Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science.
Advisor
Adam Chlipala.
Terms of use
Metadata
Show full item recordAbstract
A cryptographic secure boot and attestation system usually depends on a measurement root -- a first-stage bootloader written to ROM that loads the boot payload into the machine's memory, cryptographically signs it and ensures that the boot payload begins execution from a clean-slate environment. We implement a first-stage bootloader heavily inspired by the Sanctum project [5], describe its specification in Coq relative to low-level RISC-V semantics, state the correctness of the implementation as a theorem in Coq and prove a few major lemmas necessary for establishing correctness.
Description
Thesis: M. Eng., Massachusetts Institute of Technology, Department of Electrical Engineering and Computer Science, May, 2020 Cataloged from the official PDF of thesis. Includes bibliographical references (pages 43-45).
Date issued
2020Department
Massachusetts Institute of Technology. Department of Electrical Engineering and Computer SciencePublisher
Massachusetts Institute of Technology
Keywords
Electrical Engineering and Computer Science.