Sunjay Cauligi


Email: first-initial-of-first-name last-name AT gmail DOT com

About Me

Hey there! I'm a programmer with an interest in language design (and semantics and type theory and system/framework design and ...) for creating secure systems. I'm currently looking for a(n industry/non-research) job, so send me an email if you're doing something interesting that I can jump in on!

I used to be much more involved in the academic space, but for the time being I'm just working as an engineer at ICSI on the Extensible Internet project. Previously, I did a stint as a postdoc at the Max Planck Institute for Security and Privacy working with Gilles Barthe, and I got my PhD at UC San Diego working with Deian Stefan. Oh, and I completed my undergraduate degrees in Computer Engineering and Mathematics at the University of Washington.

I'm also a member of the core development team for Hy, a Lisp-like language that compiles to Python bytecode. It's a really fun (and very powerful) language, you should check it out!

Research and Publications

Spectre Declassified + SelSLH · Attack abusing speculative declassification + a much more efficient form of SLH
Spectre Declassified: Reading from the Right Place at the Wrong Time   [ ePrint ]
Basavesh Ammanaghatta Shivakumar, Jack Barnes, Gilles Barthe, Sunjay Cauligi,
Chitchanok Chuengsatiansup, Daniel Genkin, Sioli O’Connell, Peter Schwabe, Rui Qi Sim, Yuval Yarom
Oakland '23

Spectre semantics · there are so many papers even just in this subarea
SoK: Practical Foundations for Software Spectre Defenses   [ paperbibtexarXivpresentation · (video abstract) ]
Sunjay Cauligi, Craig Disselkoen, Daniel Moghimi, Gilles Barthe, Deian Stefan
Oakland '22

Swivel formalization · (short paper)
A Turning Point for Verified Spectre Sandboxing   [ arXiv ]
Sunjay Cauligi, Marco Guarnieri, Daniel Moghimi, Deian Stefan, Marco Vassena
TECHCON '21 (Top 10 Presenter)

Swivel · Spectre protections for in-process sandbox systems
Swivel: Hardening WebAssembly against Spectre   [ paperbibtexarXiv ]
Shravan Narayan, Craig Disselkoen, Daniel Moghimi, Sunjay Cauligi, Evan Johnson, Zhao Gang,
Anjo Vahldiek-Oberwagner, Ravi Sahita, Hovav Shacham, Dean Tullsen, Deian Stefan

Spectre/Jasmin · Bringing speculation awareness to a formally verified assembly language
High-Assurance Cryptography in the Spectre Era   [ ePrintbibtex ]
Gilles Barthe, Sunjay Cauligi, Benjamin Grégoire, Adrien Koutsos, Kevin Liao,
Tiago Oliveira, Swarn Priya, Tamara Rezk, Peter Schwabe
Oakland '21

Blade · Algorithm + static analysis tool to efficiently insert Spectre mitigations
Automatically Eliminating Speculative Leaks from Cryptographic Code with Blade   [ paperbibtexarXiv ]
Marco Vassena, Craig Disselkoen, Klaus v. Gleissenthall, Sunjay Cauligi,
Rami Gökhan Kıcı, Ranjit Jhala, Dean Tullsen, Deian Stefan
POPL '21 (Distinguished Paper — congrats Marco!)

Pitchfork · Formal framework + symbolic analysis tool for Spectre
Constant-Time Foundations for the New Spectre Era   [ paperbibtexarXivpresentation · (video abstract)github ]
Sunjay Cauligi, Craig Disselkoen, Klaus v. Gleissenthall, Dean Tullsen, Deian Stefan, Tamara Rezk, Gilles Barthe
PLDI '20 (Selected for Best Video!)

FaCT · Language for constant-time crypto
FaCT: A DSL for Timing-Sensitive Computation   [ paperbibtexpresentation · (video abstract)slidesgithub ]
Sunjay Cauligi, Gary Soeller, Brian Johannesmeyer, Fraser Brown, Riad S. Wahby, John Renner,
Benjamin Grégoire, Gilles Barthe, Ranjit Jhala, Deian Stefan
PLDI '19 (Made it to the front page of Hacker News on 2022-10-23!)

CT-Wasm · Constant-time web assembly
CT-Wasm: Type-Driven Secure Cryptography for the Web Ecosystem   [ paperbibtex ]
Conrad Watt, John Renner, Natalie Popescu, Sunjay Cauligi, Deian Stefan
POPL '19

CT-Wasm · (extended abstract)
Constant-Time WebAssembly   [ paperbibtex ]
John Renner, Sunjay Cauligi, Deian Stefan
PriSC '18

FaCT · (short paper)
FaCT: A Flexible, Constant-Time Programming Language   [ paperbibtexslides · (original)github ]
Sunjay Cauligi, Gary Soeller, Fraser Brown, Brian Johannesmeyer, Yunlu Huang, Ranjit Jhala, Deian Stefan
IEEE SecDev '17