10028870CHERI WebAssembly Micro RuntimeClosedCollaborative R&DISCFProgrammers can already write and compile code, for example in C or Rust, to create .wasm modules usable in any WASI-compliant environment, which has been massively adopted & supported across the conventional systems for its portability and near native performances. The problem is, do we have runtimes in CHERI that can actually execute those wasm modules "outside web browsers"? Our proposal is to enrich the DSbD ecosystem by developing capability aware WebAssembly System Interface-compliant WebAssembly (WASM) micro runtime for webassembly (WASM)modules that will be embedded into other compartmentalised application as a library runtime, providing a double sandboxed strategy. WASM modules that use WASI methods to interact with native functions of the host compartments and it's the underlying system resources via permissioned via controlled abstract capabilities model. The outcome of the proposal would be an open source * cWAMR runtime (capability aware WASM Micro Runtime) * cWASI SDK with cWASI-libc (cWASI SDK will be integrated within the cWAMR runtime) The above runtimes and SDKs will also be ported into the CHERI stacks (CheriBSD, Android stack, Bare metal and Linux) by default as part of cheribuild script. The developers with morello-boards can access them under respective stacks for development. As a result, this will enable a spectrum of developers to develop, port and test the CHERI platform with their respective webassembly application modules for their near native performance and the security guarantees of CHERI.