High Assurance Software Toolchain

Enhance the reliability and security of your Rust code with hax.

With hax, you can achieve a new level of confidence in the safety and reliability of your software.

Key benefits of Hax:

  • Uncover potential bugs and vulnerabilities early: Hax’s rigorous analysis can identify potential errors and security flaws before they reach production, saving you time and resources.
  • Reduce development time and costs: By formalizing your code, you can reduce the need for manual testing and reduce the risk of regressions.
  • Gain a competitive edge: Demonstrate the high quality and reliability of your software to your customers and partners.

ContactGet in touch when you are interested in using hax.


How does it work

hax is Cryspen’s Rust verification framework. hax is a tool for high assurance translations that translates a large subset of safe Rust into the formal languages accepted by proof assistants such as F* or Coq. Backends for other provers like ProVerif are under construction. A more detailed technical description can be found on the hax blog.

The toolchain supports security analysis and full functional verification of production software. Software engineers, cryptographers, and proof engineers work together to implement the software and formalise critical properties. Once verification is complete, the toolchain guarantees clean, well-documented, deployable code in Rust, C, or WebAssembly. Conversely, if an attack or bug is found, it is presented back to the cryptography or software engineer.

Hax is the basis for the integrated development and verification environment (IDVE) for Rust that is developed together with Inria in the Circus project.


GitHub Get in touch

Related Posts

/images/posts/conference-talks-2024.jpg
Conference Talks

Cryspen attended a number of conference in April and March. Here is a list of all slides and videos. We will update links when more resources become available.
/images/posts/cut-crystal.jpeg
Verifying Libcrux's ML-KEM

In a recent blog post, we described Cryspen’s new Rust implementation of ML-KEM in Rust, and talked about how our high-assurance development methodology helped us find a new timing bug in various other Kyber implementations.
/images/posts/circus-cyber-campus.png
Announcing Campus Cyber Circus Project

🎉 We’re excited to announce that Cryspen partnered with Inria on a transfer project to build a new integrated development and verification environment (IDVE).
/images/posts/pexels-egor-kamelev-751689.jpeg
Specifying Oblivious Pseudonymization

In this blog post we announce an executable specification in the hacspec specification language for the ScrambleDB pseudonymization system, developed by Cryspen as part of the BMBF ATLAS project.
/images/ai-pic.jpeg
Prairie and Atlas

With the widespread adoption and deployment of machine learning across enterprises, ever-increasing amounts of data are being collected, stored, communicated, combined, and computed over by sophisticated algorithms.
/images/posts/rwc-karthik-franziskus.jpeg
Cryspen @ RWC 2023

At Real World Crypto 2023 in Tokyo, we gave a talk on the hacspec language, the hax tool, and the libcrux crypto library.