We study the mechanised specification of the JavaScript language (following the ECMAScript 5 standard) and the verification of JavaScript programs.

JSCert

With Bodin, Charguéraud, and Schmitt at Inria, we have developed JSCert, a substantial Coq specification that is line-by-line close to the core language of the ECMAScript 5 standard. It comes with a reference interpreter, JSRef, proven correct with respect to JSCert and tested using the official Test262 test suite. We are currently extending this specification to the numerous libraries, providing continuous test integration for the ever-growing specification, developing a new, human-readable JSRef, with a tighter connection to the standard and good tracking properties, and creating the web service Explain.js to explain behavioural complexities of JavaScript programs.

JSIL

We have developed a principled compiler from JavaScript (ECMAScript 5 strict) to a small intermediate language JSIL, which has a simpler operational semantics and is better suited to program verification. The compiler has been substantially tested using the Test262 test suite and it comes with a hand-proof of translation correctness for a fragment of the language. We will use JSIL to develop JSVerify - a verification tool for JavaScript. Daiva Naudžiūnienė will this year hold internships at Amazon and Facebook to use JSIL to develop front-ends for the CBMC and Infer verification tools.

Research Support

This research is supported by the EPSRC programme grant EP/K008528/1: REMS: Rigorous Engineering of Mainstream Systems and previously by the EPSRC/GCHQ grant EP/K032089/1: Certified Verification of Client-Side Web Programs and the EPSRC programme grant EP/H008373/2: Resource Reasoning.

We also interact extensively with Arthur Charguéraud, Alan Schmitt and Martin Bodin of INRIA, who are supported by the AJACS project.

People

Recent Publications

  1. JaVerT 2.0: Compositional Symbolic Execution for JavaScript

    PACMPL, vol. 3( POPL)

  2. Skeletal Semantics and their Interpretations

    PACMPL, vol. 3( POPL)

  3. Symbolic Execution for JavaScript

    Proceedings of the 20th International Symposium on Principles and Practice of Declarative Programming, PPDP 2018, Frankfurt am Main, Germany, September 03-05, 2018, pp. 11:1–11:14

  4. JSExplain: a Double Debugger for JavaScript

    WWW ’18 Companion: The 2018 Web Conference Companion, April 23–27, 2018, Lyon, France

  5. JaVerT: JavaScript Verification Toolchain

    PACMPL, vol. 2(POPL), pp. 50:1–50:33

  6. An Infrastructure for Tractable Verification of JavaScript Programs

    Ph.D. Thesis, Imperial College London

  7. Towards Logic-based Verification of JavaScript Programs

    Proceedings of 26th Conference on Automated Deduction (CADE 26)

  8. DOM: Specification and Client Reasoning

    Proceedings of the 13th Asian Symposium on Programming Languages and Systems (APLAS’16), pp. 401–422

  9. Mashic Compiler: Mashup Sandboxing based on Inter-frame Communication

    Journal of Computer Security, vol. 1(24), pp. 91–136

  10. A Trusted Mechanised Specification of JavaScript: One Year On

    Proceedings of the 27th International Conference on Computer Aided Verification (CAV’15), pp. 3–10