MSc Aditya Oak
0000-0002-9964-5794

Hochschulstr. 10
64289 Darmstadt, Germany

My research interests include Programming Languages, Information Flow Control and Trusted Execution Environments. I worked on language abstractions for secure programming with trusted execution environments under the project CROSSING.

I am one of the developers of the J_E language—a language for secure Java programming with Intel SGX.

Publications

1. PAVeTrust
   J_E
   

   Towards Democratizing Secure Enclave Programming

   Aditya Oak, Amir M. Ahmadian, Musard Balliu, Guido Salvaneschi

   In Program Analysis and Verification on Trusted Platforms, PAVeTrust, 2021

   Abstract PDF

   Secure enclaves, like Intel SGX, provide a means to process data securely on third-party cloud infrastructure with little or no performance overhead. Developing software that takes advantage of a secure enclave requires, however, to explicitly deal with a number of low-level details such as dedicated IO, custom syscalls, and stringent memory constraints, requiring the expertise needed for system programming, rather than applications. We discuss our recent research that provides a developer-friendly approach to enclave programming—our Java language extension JE. Finally, we outline our vision of a programming framework that brings secure enclave programming at the fingertips of application developers.

2. SecDev
   J_E
   

   Enclave-Based Secure Programming with JE

   Aditya Oak, Amir M. Ahmadian, Musard Balliu, Guido Salvaneschi

   In Proceedings of the 2021 IEEE Secure Development Conference, SecDev, 2021

   Abstract PDF

   Over the past few years, major hardware vendors have started offering processors that support Trusted Execution Environments (TEEs) allowing confidential computations over sensitive data on untrusted hosts. Unfortunately, developing applications that use TEEs remains challenging. Current solutions require to use low-level languages (e.g., C/C++) to handle the TEE management process manually – a complex and error-prone task. Worse, the separation of the application into components that run inside and outside the TEE may lead to information leaks. In summary, TEEs are a powerful means to design secure applications, but there is still a long way to building secure software with TEEs alone.

   In this work, we present , a programming model for developing TEE-enabled applications where developers only need to annotate Java programs to define application-level security policies and run them securely inside enclaves.

3. CSF
   J_E
   

   Language Support for Secure Software Development with Enclaves

   Aditya Oak, Amir M. Ahmadian, Musard Balliu, Guido Salvaneschi

   In Proceedings of the 34th IEEE Computer Security Foundations Symposium, CSF, 2021

   Abstract PDF

   Confidential computing is a promising technology for securing code and data-in-use on untrusted host machines, e.g., the cloud. Many hardware vendors offer different implementations of Trusted Execution Environments (TEEs). A TEE is a hardware protected execution environment that allows performing confidential computations over sensitive data on untrusted hosts. Despite the appeal of achieving strong security guarantees against low-level attackers, two challenges hinder the adoption of TEEs. First, developing software in high-level managed languages, e.g., Java or Scala, taking advantage of existing TEEs is complex and error-prone. Second, partitioning an application into components that run inside and outside a TEE may break application-level security policies, resulting in an insecure application when facing a realistic attacker.

   In this work, we study both these challenges. We present J_E, a programming model that seamlessly integrates a TEE, abstracting away low-level programming details such as initialization and loading of data into the TEE. J_E only requires developers to add annotations to their programs to enable the execution within the TEE. Drawing on information flow control, we develop a security type system that checks confidentiality and integrity policies against realistic attackers with full control over the code running outside the TEE. We formalize the security type system for the J_E core and prove it sound for a semantic characterization of security. We implement J_E and the security type system, enable Java programs to run on Intel SGX with strong security guarantees. We evaluate our approach on use cases from the literature, including a battleship game, a secure event processing system, and a popular processing framework for big data, showing that we correctly handle complex cases of partitioning, information flow, declassification, and trust.

4. ALGOSENSORS
   

   Collaborative Broadcast in 𝓞(log log n) Rounds

   Christian Schindelhauer, Aditya Oak, Thomas Janson

   In Proceedings of the International Symposium on Algorithms and Experiments for Sensor Systems, Wireless Networks and Distributed Robotics, ALGOSENSORS, 2019

   Abstract

   We consider the multihop broadcasting problem for n nodes placed uniformly at random in a disk and investigate the number of hops required to transmit a signal from the central node to all other nodes under three communication models: Unit-Disk-Graph (UDG), Signal-to-Noise-Ratio (SNR), and the wave superposition model of multiple input/multiple output (MIMO).

5. PASS
   J_E
   

   Language Support for Multiple Privacy Enhancing Technologies

   Aditya Oak, Mira Mezini, Guido Salvaneschi

   In Companion Proceedings of the 3rd International Conference on Art, Science, and Engineering of Programming, ‹Programming› Companion, 2019

   Abstract

   Privacy is one of the critical aspects in the design of computing systems. Various techniques are being used to enforce privacy, such as information flow control, symmetric/asymmetric cryptography, secure computing enclaves, partial homomorphic encryption and differential privacy. These mechanisms should ideally be combined in complex software systems as they offer different properties and performance trade offs. Unfortunately, reasoning about the privacy properties of such combination is still an open research problem.

   In this paper, we present our vision on a programming language in which we incorporate different privacy preservation techniques in a common programming model.