Nikhil Swamy

TL;DR: This paper outlines a framework to analyze and verify both the runtime safety and the functional correctness of Ethereum contracts by translation to F*, a functional programming language aimed at program verification.

TL;DR: This paper proposes a simple alternative mechanism for preventing script injection called Browser-Enforced Embedded Policies (BEEP), which is that a web site can embed a policy in its pages that specifies which scripts are allowed to run.

TL;DR: A new, completely redesigned, version of F*, a language that works both as a proof assistant as well as a general-purpose, verification-oriented, effectful programming language that confirms F*'s pay-as-you-go cost model.

TL;DR: This work presents F*, a full-fledged design and implementation of a new dependently typed language for secure distributed programming that provides arbitrary recursion while maintaining a logically consistent core, and proves type soundness (with proofs mechanized in Coq) and logical consistency for F*.

TL;DR: This paper presents \ibex, a new framework for authoring, analyzing, verifying, and deploying secure browser extensions based on using type-safe, high-level languages to program extensions against an API providing access to a variety of browser features, and proposes using Data log to specify fine-grained access control and dataflow policies.