Public information on Automated Reasoning at Amazon as of Sept 2021:

• Apply for internships!
• Amazon Research Awards
• Websites with information:
  • https://aws.amazon.com/security/provable-security/
  • amazon.science
• Staff scientists at "Principal", "Senior Principal", or "Distinguished" level (see levels.fyi for comparisons):
  • Andrew Gacek,
  • Bor-Yuh Evan Chang (Part-time),
  • Bruno Dutertre,
  • Byron Cook,
  • Cesar Munoz,
  • Daniel Kroening,
  • Dimitra Giannakopoulou,
  • Emina Torlak,
  • Ernie Cohen,
  • Franco Raimondi (Part-time),
  • Jaco Geldenhuys,
  • Jared Davis,
  • Jim Grundy,
  • John Harrison,
  • Ken McMillan (Part-time),
  • Lee Pike,
  • Marijn Heule (Part-time),
  • Mark Tuttle,
  • Mike Hicks,
  • Mike Whalen,
  • Murat Demirbas,
  • Nathan Chong,
  • Neha Rungta,
  • Niko Matsakis,
  • Rajeev Joshi,
  • Remi Delmas,
  • Rupak Majumdar (Part-time),
  • Rustan Leino,
  • Serdar Tasiran,
  • Suresh Jagannathan (Part-time),
  • Teme Kahsai,
  • Willem Visser,
  • Xi Wang (Part-time),
  • Zvonimir Rakameric.
  Note that I am only listing staff that have listed their affiliation on public websites such as LinkedIn, Google scholar, amazon.science, or univeristy websites. We have some senior staff who have choosen to keep their affiliation private.
• Papers
  • Using lightweight formal methods to validate a key value storage node in Amazon S3, SOSP'21
  • Formally verifying FreeRTOS' interprocess communication mechanism, Embedded World '21
  • Pre-deployment security assessment for cloud services through semantic reasoning, CAV'21
  • Verified cryptographic code for everybody, CAV'21
  • Debugging network reachability with blocked paths, CAV'21
  • Code-level model checking in the software development workflow at Amazon Web Services, ICSE'21
  • Using model checking tools to triage the severity of security bugs in the Xen hypervisor, FMCAD'20
  • RAPID: checking API usage for the cloud in the cloud, ESEC'21
  • Stratified abstraction of access control policies, CAV'20
  • IDE support for cloud-based static analysis, ESEC'20
  • Continuous compliance, ASC'20
  • Verifying object construction, ICSE'20
  • Block public access: Trust safety verification of access control policies, ESEC'20
  • Reachability Analysis for AWS-based Networks, CAV'19
  • Object-oriented security proofs, FM'18
  • Formal reasoning about the security of Amazon Web Services, CAV'18 Invited paper
  • Model-checking boot code from AWS datacenter, CAV'18
  • Semantic-based Automated Reasoning for AWS Access Policies using SMT, FMCAD'18
  • Continuous formal verification of Amazon s2n, CAV'18
  • SideTrail: Verifying Time-Balancing of Cryptosystems, VSTTE'18
  • Practical Methods for Reasoning about Java 8's Functional Programming Features, VSTTE '18
• Interviews:
  • Neha Rungta on The CUBE
  • Serdar Tasiran CAV'21 Ask Me Anything
  • Byron Cook PLDI'20 Ask Me Anything
  • Byron Cook on The CUBE
  • Byron Cook answers "what's new" in Automated Reasoning for AWS over the past year
  • Neha Rungta discusses constraint-based reasoning tools in AWS Config Rules.
• Lectures by AWS customers:
  • Millennium Management: How Millennium Management achieves provable security with AWS Zelkova, lecture by Mark Horta and Aaron Fagan of Millennium Management
  • Bridgewater Associates at AWS NYC SummitC
  • Goldman Sachs: Policy Verification and Enforcement at Scale with AWS
  • Bridgewater Associates: The Theory and Math Behind Data Privacy and Security Assurance
  • LogMeIn: How LogMeIn Automates Governance and Empowers Developers at Scale
• Lectures aimed at customers and industry:
  • Dive Deep into IAM Access Analyze, lecture by Andrew Gacek and others
  • Re:Invent Keynote, lecture by CTO Werner Vogels
  • The Evolution of Automated Reasoning Technology at AWS, lecture with AWS VP of security Eric Brandwine
  • Automating Compliance Verification on AWS Using Provable Security, lecture with AWS VP of compliance Chad Woolf, and compliance auditor Coalfire's CEO Tom McAndrew
  • An AWS Approach to Higher Standards of Assurance w/ Provable Security, Byron Cook
  • lecture by AWS CISO and VP of security Steve Schmidt about on the development and use of formal/constraint-based tools in AWS.
• Talks aimed at science community:
  • The business of proof, Workshop on Dependable and Secure Software Systems 2021
  • How I learned to stop worrying and start applying automated reasoning, FACC'21 (other relevant talks at FACC website)
  • Pre-Deployment Security Assessment for Cloud Services through Semantic Reasoning, CAV'21
  • Verified Cryptographic Code for Everybody, CAV'21
  • Debugging Network Reachability with Blocked Paths, CAV'21
  • Embedded World 2021: Formally Verifying the FreeRTOS IPC Mechanism, Embedded World '21
  • Stratified abstraction of access control policies, CAV'20
  • Formal reasoning about the security of Amazon Web Services, FLoC 2018 plenary lecture
  • Formal reasoning about the security of Amazon Web Services, OOPSLA/SPLASH 2018 keynote lecture
  • (skip to 30mins in): SideTrail: Verifying Time-Balancing of Cryptosystems
  • What is Automated Reasoning? How Is it Used at AWS?,
  • Provable Security at AWS, USENIX Enigma 2019
  • On automated reasoning for compliance certification, CAV workshop on Formal Approaches to Certifying Compliance (FACC)
• Blog posts and informational videos
  • How automated reasoning helps us innovate at S3 scale
  • On VPC Reachablity Analyzer
  • AWS Loves Rust
  • Using Formal Methods to validate OTA Protocol
  • Tightening application security with Amazon CodeGuru
  • More AWS blogs at https://aws.amazon.com/blogs/security/tag/automated-reasoning/
  • AWS CTO blogs about Automated Reasoning Group: Proving security at scale with automated reasoning
  • CTO discusses S3 consitency
  • How automated reasoning improves Prime Vdeo experience
  • Chad Wolff (VP of compliance at AWS) discusses his interest in using Automated Reasoning to simplify and raise the bar on compliance certification
  • A simpler way to assess the network exposure of EC2 instances: AWS releases new network reachability assessments in Amazon Inspector
  • AWS Podcast interview:Provable security podcast: Byron interviews Moshe Vardi
  • AWS Podcast interview:#266: Next Generation Security with Automated Reasoning, an Artificial Intelligence Technology | October 7, 2018
  • What it's like to work at the AWS Automated Reasoning Group
  • How AWS SideTrail verifies key AWS cryptography code
  • Podcast: AI tech named automated reasoning provides next-gen cloud security
  • Daniel Schwartz-Narbonne shares how automated reasoning is helping achieve the provable security of AWS boot code
  • Jeff Barr about tools for IoT configuration verification
  • New (Zelkova-based) AWS Config rules s3-blacklisted-actions-prohibited and bucket-policy-not-more-permissive are released
  • How AWS uses automated reasoning to help you achieve security at scale
  • blog post on the the use of contraint-based reasoning about policies in the Amazon Web Services S3 console.
  • blog post about event-driven checks in AWS Config powered by automated constraint solving techniques over IAM policies (and attend this session at NY summit).
  • more detail.
  • Some detail about constraint-based IAM policy analysis used in Amazon Macie can be found here
  • Blogs 1, 2, and 3 about work with Galois to prove the correctness of Amazon's crypto infrastructure component s2n.
• Press:
  • How Do You Explain The Unreasonable Effectiveness Of Cloud Security?, highscalability.com
  • Amazon Adds Crypto-Based Security Tools, pymnts.com
  • Amazon tests out two tools to help keep its cloud secure, Wired magazine
  • What are Amazon Zelkova and Tiros? AWS looks to reduce S3 configuration errors, IDG
  • Amazon is quietly doubling down on cryptographic security, TechCrunch

  Back.