Due: Mon, 30 May 2016 23:00:00 -0700
Read Ironclad Apps: End-to-End Security via Automated Full-System Verification, OSDI 2014.
Take a look at the git repo.
Summarize non-interference and de-classification. Why is declassification needed?
What separate precautions need to be taken when it comes to devices? And which hardware components do we need to trust?
How does their crypto verification compare to the HMAC paper?
Provide a list of questions you would like to discuss.