Jérémy Thibault

Research

In general, I am interested in using techniques from programming language theory and formal methods to improve our experience of the digital world. I start from this simple observation: using a computer in 2024 is a dreadful experience. The average user is more likely to equate computers with crashes, freezes, overall slowness and unresponsiveness, and bugs in general, rather than see computers as helpful tools that improve their life. On top of that, our increasing dependence on computer systems can only frustrate users who now have to use buggy systems to manage every part of their life. Worse, because such a large part of our digital life is managed by unreliable systems, we live at the mercy of the next devastating bug such as Heartbleed or the CrowdStrike outages; and the best we can do is hope that the next bug will be patched quick enough.

Yet, this doesn't have to be the case! In the last few decades, a lot of progress has been made in terms of verifying programs: researchers have built verified compilers, kernels, cryptographic libraries, etc. Model checking tools such as TLA+ have been used successfully to model and verify the properties of real-life systems used in industry. At the same time, safer and saner languages such as Rust have become increasingly popular, as they allow writing safe programs without compromising on performance.

I am hoping that, in the future, we'll be able to combine all these techniques, as well as other ones such as worst-case execution time analysis, to make using computers safer, easier, and less frustrating. As a strong believer in formal methods, I believe that in a few decades at most, we'll be able to convince even the most reluctant developer of their benefits. In the meantime, I aim to improve the formal methods ecosystem, and show that they can be used to build reliable computer systems.

Curriculum Vitae

My CV is available in French (long version) and in English (long version).

Publications

Conferences

• Jérémy Thibault, Roberto Blanco, Dongjae Lee, Sven Argo, Arthur Azevedo de Amorim, Aı̈na Linn Georges, Catalin Hritcu, and Andrew Tolmach.
  “SECOMP: Formally Secure Compilation of Compartmentalized C Programs,”
  CoRR abs/2401.16277 (2024), https://doi.org/10.48550/ARXIV.2401.16277.
  • Accepted at CCS'24
• Akram El-Korashy, Roberto Blanco, Jérémy Thibault, Adrien Durier, Deepak Garg, and Cătălin Hriţcu.
  “SecurePtrs: Proving Secure Compilation with Data-Flow Back-Translation and Turn-Taking Simulation,”
  in 2022 IEEE 35th Computer Security Foundations Symposium (CSF) (IEEE, 2022), 64–79, https://doi.org/10.1109/csf54842.2022.9919680.
  • Coq development
• Carmine Abate, Roberto Blanco, Ștefan Ciobâcă, Adrien Durier, Deepak Garg, Cătălin Hrițcu, Marco Patrignani, Éric Tanter, and Jérémy Thibault.
  “Trace-Relating Compiler Correctness and Secure Compilation,”
  in Programming Languages and Systems (Springer International Publishing, 2020), 1–28, https://doi.org/10.1007/978-3-030-44914-8_1.
  • Superseded by An Extended Account of Trace-relating Compiler Correctness and Secure Compilation
  • Coq development
• Carmine Abate, Roberto Blanco, Deepak Garg, Catalin Hritcu, Marco Patrignani, and Jérémy Thibault.
  “Journey Beyond Full Abstraction: Exploring Robust Property Preservation for Secure Compilation,”
  in 2019 IEEE 32nd Computer Security Foundations Symposium (CSF) (IEEE, 2019), https://doi.org/10.1109/csf.2019.00025.
  • Distinguished Paper Award
  • Coq development

Journals

• Carmine Abate, Roberto Blanco, Ştefan Ciobâcă, Adrien Durier, Deepak Garg, Catalin Hritcu, Marco Patrignani, Éric Tanter, and Jérémy Thibault.
  “An Extended Account of Trace-Relating Compiler Correctness and Secure Compilation,”
  ACM Trans. Program. Lang. Syst. 43, no. 4 (2021): 14:1–48, https://doi.org/10.1145/3460860.
  • Supersedes Trace-Relating Compiler Correctness and Secure Compilation
  • Coq development

Informal publications

• Jérémy Thibault and Cătălin Hrițcu.
  “Nanopass Back-Translation of Multiple Traces for Secure Compilation Proofs” (2021).
  • Extended abstract submitted at PriSC'21
• Carmine Abate, Arthur Azevedo de Amorim, Roberto Blanco, Ana Nora Evans, Guglielmo Fachini, Catalin Hritcu, Théo Laurent, Benjamin C. Pierce, Marco Stronati, Jérémy Thibault, and Andrew Tolmach.
  “When Good Components Go Bad: Formally Secure Compilation Despite Dynamic Compromise,” 2018, https://arxiv.org/abs/1802.00588v5.
  • Coq development
  • Contribution: significant improvement to the proof by removing the use of partial semantics
• Jérémy Thibault.
  “A Trace-Based Proof Technique for Secure Compilation,” 2019.
  • Extended abstract submitted for the student research competition at POPL'19

Service

Workshop PC

• PriSC'25

Sub-reviewer

• POPL'24, JCS, RV, JFP

Artifact evaluation committee

• OOPSLA'24, POPL'23

Teaching

• Teaching assistant for Foundations of Programming Languages, Verification, and Security (Winter Semester 2023-2024, Ruhr Universität Bochum, Germany).
  (One semester course based on Software Foundations Vol. 2)

• Teaching assistant for Writing and Verifying Functional Programs in Coq (Summer School on Cryptography, Blockchain, and Program Verification, Mathinfoly 2019, Lyon, France)

Internships

• Internship in the Prosecco Team at Inria.
  Subject: “A Trace-based Proof Technique for Secure Compilation”.
  • Supervision: Cătălin Hriţcu.
  • From February 2018 to June 2018
  • The work was integrated in our paper, Journey Beyond Full Abstraction: Exploring Robust Property Preservation for Secure Compilation
• Internship in the Logic and semantics group at Aarhus University.
  Subject: “Improving language-based predictive mitigation for information-flow security"
  • Supervision: Aslan Askarov.
  • From June 2017 to August 2017
  • Internship report: Improving language-based predictive mitigation for information-flow security.
• Internship in the SUMO Team at Irisa (Rennes, France).
  Subject: «Games with hierarchical objectives»
  • Supervision: Ocan Sankur
  • From May 2016 to July 2016