CHERI-RISC-V - a full stack solution for spatial and temporal memory safety

Duration: 46 mins 6 secs

Share this media item:

Embed this media item:

<iframe width="_width_" height="_height_" src="https://sms.cam.ac.uk/media/3283051/embed" frameborder="0" scrolling="no" allowfullscreen></iframe>

Choose size:

About this item

Available Formats

About this item

CHERI-RISC-V - a full stack solution for spatial and temporal memory safety's image

Description:	Research talk on the CHERI-RISC-V open source hardware and software stack with an emphasis on secure hardware.

Created:

2020-09-07 13:52

Collection:

CHERI Talks and Videos

Publisher:

University of Cambridge

Prof. Simon W. Moore

Language:

eng (English)

Keywords:

CHERI; RISC-V; CHERI-RISC-V; secure processors;

Credits:

Author:

Simon W. Moore


Abstract:	Originally prototyped on MIPS, we have now added CHERI security extensions to the RISC-V ISA, with multiple open-source cores with various microarchitectures prototyped on FPGA. CHERI extensions for RISC-V provide low-level hardware primitives for in-memory capabilities that allows software to dramatically improve security by mitigating many spatial and temporal memory safety vulnerabilities. Spatial vulnerabilities like buffer-overflow and buffer-over read are typically eliminated through the compiler and linker capturing more of the programmer’s original intent. Pointers are mapped into in-memory capabilities that include bounds, permissions and have integrity properties. Temporal memory safety mitigates vulnerabilities like use-after-free through revocation of capabilities, offering a major performance improvement over existing techniques like address sanitiser. Capabilities provide the basis for other software mitigations, including control-flow robustness and highly efficient compartmentalisation.

Abstract:

Originally prototyped on MIPS, we have now added CHERI security extensions to the RISC-V ISA, with multiple open-source cores with various microarchitectures prototyped on FPGA. CHERI extensions for RISC-V provide low-level hardware primitives for in-memory capabilities that allows software to dramatically improve security by mitigating many spatial and temporal memory safety vulnerabilities. Spatial vulnerabilities like buffer-overflow and buffer-over read are typically eliminated through the compiler and linker capturing more of the programmer’s original intent. Pointers are mapped into in-memory capabilities that include bounds, permissions and have integrity properties. Temporal memory safety mitigates vulnerabilities like use-after-free through revocation of capabilities, offering a major performance improvement over existing techniques like address sanitiser. Capabilities provide the basis for other software mitigations, including control-flow robustness and highly efficient compartmentalisation.

Available Formats

Format	Quality	Bitrate	Size
MPEG-4 Video	1920x1080	1.91 Mbits/sec	661.89 MB	View	Download
WebM	1920x1080	2.03 Mbits/sec	704.73 MB	View	Download
MP3	44100 Hz	249.74 kbits/sec	84.66 MB	Listen	Download
Auto *	(Allows browser to choose a format it supports)