Microwalk-CI: Practical Side-Channel Analysis for JavaScript Applications. (arXiv:2208.14942v1 [cs.CR])

Secret-dependent timing behavior in cryptographic implementations has
resulted in exploitable vulnerabilities, undermining their security. Over the
years, numerous tools to automatically detect timing leakage or even to prove
their absence have been proposed. However, a recent study at IEEE S&P 2022
showed that, while many developers are aware of one or more analysis tools,
they have major difficulties integrating these into their workflow, as existing
tools are tedious to use and mapping discovered leakages to their originating
code segments requires …

analysis applications channel javascript javascript applications side-channel