I'm a fifth year PhD student at the University of California, San Diego Computer Science and Engineering department. I work in the Computer Security and Programming Languages Groups advised by Prof. Deian Stefan. My primary research interests are in approaches to maintain security while writing large applications such as the use of sandboxing/fault isolation, memory safety enforcement techniques and verified programming.
(replace the AT and DOT above with symbols)
Matthew Kolosick, Shravan Narayan, Conrad Watt, Michael LeMay, Deepak Garg, Ranjit Jhala, Deian Stefan
Isolation Without Taxation: Near Zero Cost Transitions for SFI(Currently awaiting review)
Paper artifacts/code (coming soon)
Shravan Narayan, Craig Disselkoen, Daniel Moghimi, Sunjay Cauligi, Evan Johnson, Zhao Gang, Anjo Vahldiek-Oberwagner, Ravi Sahita, Hovav Shacham, Dean Tullsen, Deian Stefan
Swivel: Hardening WebAssembly against SpectreUSENIX Security Symposium 2021.
Evan Johnson, Yousef Alhessi, David Thien, Shravan Narayan, Fraser Brown, Sorin Lerner, Tyler McMullen, Stefan Savage, and Deian Stefan.
Довер ́яй, но провер ́яй: SFI safety for native-compiled Wasm(**The title prefix means trust but verify )
Network and Distributed System Security Symposium (NDSS) 2021.
Paper artifacts/code Conference video How to cite this paper in Latex (correctly handling cyrillic text)Shravan Narayan, Craig Disselkoen, Tal Garfinkel, Nathan Froyd, Eric Rahm, Sorin Lerner, Hovav Shacham, and Deian Stefan.
RLBox: Retrofitting Fine Grain Isolation in the Firefox Renderer (Extended Version) Distinguished Paper Award WinnerUSENIX Security Symposium 2020.
Paper artifacts/code Conference video Longer videoRLBox sandboxing framework production ready version: Code Docs
Announcement: RLBox in FirefoxMichael Smith, Craig Disselkoen, Shravan Narayan, Fraser Brown, and Deian Stefan.
Browser history re:visited.USENIX Workshop on Offensive Technologies (WOOT) 2018.
Fraser Brown, Shravan Narayan, Riad S. Wahby, Dawson Engler, Ranjit Jhala, and Deian Stefan.
Finding and Preventing Bugs in JavaScript Bindings.Symposium on Security and Privacy, IEEE 2017.
Paper artifacts/codeTal Garfinkel, Shravan Narayan, Craig Disselkoen, Hovav Shacham, Deian Stefan
The Road to Less Trusted Code: Lowering the Barrier to In-Process SandboxingArticle in USENIX ;login; newsletter Winter 2020
Shravan Narayan, Tal Garfinkel, Sorin Lerner, Hovav Shacham, Deian Stefan
Gobi: WebAssembly as a Practical Path to Library SandboxingUnpublished short paper, originally written Jan 2019, updated Nov 2019
Jean-Pierre Talpin, Jean-Joseph Marty, Shravan Narayan, Deian Stefan and Rajesh Gupta
Towards verified programming of embedded devicesInvited Short Paper at the DATE 2019 conference.