Capability machines provide security guarantees at machine level which makes them an interesting target for secure compilation schemes that provably enforce properties such as control-flow correctness and encapsulation of local state. We provide a formalization of a representative capability machine with local capabilities and study a novel calling convention. We provide a logical relation that semantically captures the guarantees provided by the hardware (a form of capability safety) and use it to prove control-flow correctness and encapsulation of local state. The logical relation is not specific to our calling convention and can be used to reason about arbitrary programs.

中文翻译：

---

推理具有本地能力的机器

能力机器在机器级别提供安全保证，这使它们成为安全编译方案的有趣目标，这些方案可证明强制执行控制流正确性和本地状态封装等属性。我们提供了具有本地能力的代表性能力机器的形式化，并研究了一种新颖的调用约定。我们提供了一种逻辑关系，它在语义上捕获了硬件提供的保证（一种能力安全的形式），并用它来证明控制流的正确性和本地状态的封装。逻辑关系并不特定于我们的调用约定，可用于推理任意程序。