Color My World: Deterministic Tagging for Memory Safety
Hardware-assisted memory protection features are increasingly being deployed in COTS processors. ARMv8.5 Memory Tagging Extensions (MTE) is a recent example, which has been used to provide probabilistic checks for memory safety. This use of MTE is not secure against the standard adversary with arbit...
Gespeichert in:
| Hauptverfasser: | , , , , |
|---|---|
| Format: | Artikel |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext bestellen |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | |
|---|---|
| container_issue | |
| container_start_page | |
| container_title | |
| container_volume | |
| creator | Liljestrand, Hans Chinea, Carlos Denis-Courmont, Rémi Ekberg, Jan-Erik Asokan, N |
| description | Hardware-assisted memory protection features are increasingly being deployed
in COTS processors. ARMv8.5 Memory Tagging Extensions (MTE) is a recent
example, which has been used to provide probabilistic checks for memory safety.
This use of MTE is not secure against the standard adversary with arbitrary
read/write access to memory. Consequently MTE is used as a software development
tool. In this paper we present the first design for deterministic memory
protection using MTE that can resist the standard adversary, and hence is
suitable for post-deployment memory safety. We describe our compiler extensions
for LLVM Clang implementing static analysis and subsequent MTE instrumentation.
Via a comprehensive evaluation we show that our scheme is effective. |
| doi_str_mv | 10.48550/arxiv.2204.03781 |
| format | Article |
| fullrecord | <record><control><sourceid>arxiv_GOX</sourceid><recordid>TN_cdi_arxiv_primary_2204_03781</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>2204_03781</sourcerecordid><originalsourceid>FETCH-LOGICAL-a671-b41814949788c2fd1b0a9910ea09600aafae0c3a68ac29d545a62f61ec1950383</originalsourceid><addsrcrecordid>eNotj71qwzAURrVkKGkfoFP1Anbv1Z-lbsH9hYQMMXQ0N7JkBHZcFFPqty9JO53l4_Adxu4RSmW1hkfKP-m7FAJUCbKyeMOqehqmzHcL_5zy0D3x5zCHPKZTOs_J84b6Pp16Hi-bME554QeKYV5u2SrScA53_1yz5vWlqd-L7f7to95sCzIVFkeFFpVTrrLWi9jhEcg5hEDgDABRpABekrHkheu00mRENBg8Og3SyjV7-NNen7dfOY2Ul_ZS0F4L5C_HID9v</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype></control><display><type>article</type><title>Color My World: Deterministic Tagging for Memory Safety</title><source>arXiv.org</source><creator>Liljestrand, Hans ; Chinea, Carlos ; Denis-Courmont, Rémi ; Ekberg, Jan-Erik ; Asokan, N</creator><creatorcontrib>Liljestrand, Hans ; Chinea, Carlos ; Denis-Courmont, Rémi ; Ekberg, Jan-Erik ; Asokan, N</creatorcontrib><description>Hardware-assisted memory protection features are increasingly being deployed
in COTS processors. ARMv8.5 Memory Tagging Extensions (MTE) is a recent
example, which has been used to provide probabilistic checks for memory safety.
This use of MTE is not secure against the standard adversary with arbitrary
read/write access to memory. Consequently MTE is used as a software development
tool. In this paper we present the first design for deterministic memory
protection using MTE that can resist the standard adversary, and hence is
suitable for post-deployment memory safety. We describe our compiler extensions
for LLVM Clang implementing static analysis and subsequent MTE instrumentation.
Via a comprehensive evaluation we show that our scheme is effective.</description><identifier>DOI: 10.48550/arxiv.2204.03781</identifier><language>eng</language><subject>Computer Science - Cryptography and Security</subject><creationdate>2022-04</creationdate><rights>http://arxiv.org/licenses/nonexclusive-distrib/1.0</rights><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><link.rule.ids>228,230,776,881</link.rule.ids><linktorsrc>$$Uhttps://arxiv.org/abs/2204.03781$$EView_record_in_Cornell_University$$FView_record_in_$$GCornell_University$$Hfree_for_read</linktorsrc><backlink>$$Uhttps://doi.org/10.48550/arXiv.2204.03781$$DView paper in arXiv$$Hfree_for_read</backlink></links><search><creatorcontrib>Liljestrand, Hans</creatorcontrib><creatorcontrib>Chinea, Carlos</creatorcontrib><creatorcontrib>Denis-Courmont, Rémi</creatorcontrib><creatorcontrib>Ekberg, Jan-Erik</creatorcontrib><creatorcontrib>Asokan, N</creatorcontrib><title>Color My World: Deterministic Tagging for Memory Safety</title><description>Hardware-assisted memory protection features are increasingly being deployed
in COTS processors. ARMv8.5 Memory Tagging Extensions (MTE) is a recent
example, which has been used to provide probabilistic checks for memory safety.
This use of MTE is not secure against the standard adversary with arbitrary
read/write access to memory. Consequently MTE is used as a software development
tool. In this paper we present the first design for deterministic memory
protection using MTE that can resist the standard adversary, and hence is
suitable for post-deployment memory safety. We describe our compiler extensions
for LLVM Clang implementing static analysis and subsequent MTE instrumentation.
Via a comprehensive evaluation we show that our scheme is effective.</description><subject>Computer Science - Cryptography and Security</subject><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2022</creationdate><recordtype>article</recordtype><sourceid>GOX</sourceid><recordid>eNotj71qwzAURrVkKGkfoFP1Anbv1Z-lbsH9hYQMMXQ0N7JkBHZcFFPqty9JO53l4_Adxu4RSmW1hkfKP-m7FAJUCbKyeMOqehqmzHcL_5zy0D3x5zCHPKZTOs_J84b6Pp16Hi-bME554QeKYV5u2SrScA53_1yz5vWlqd-L7f7to95sCzIVFkeFFpVTrrLWi9jhEcg5hEDgDABRpABekrHkheu00mRENBg8Og3SyjV7-NNen7dfOY2Ul_ZS0F4L5C_HID9v</recordid><startdate>20220407</startdate><enddate>20220407</enddate><creator>Liljestrand, Hans</creator><creator>Chinea, Carlos</creator><creator>Denis-Courmont, Rémi</creator><creator>Ekberg, Jan-Erik</creator><creator>Asokan, N</creator><scope>AKY</scope><scope>GOX</scope></search><sort><creationdate>20220407</creationdate><title>Color My World: Deterministic Tagging for Memory Safety</title><author>Liljestrand, Hans ; Chinea, Carlos ; Denis-Courmont, Rémi ; Ekberg, Jan-Erik ; Asokan, N</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-a671-b41814949788c2fd1b0a9910ea09600aafae0c3a68ac29d545a62f61ec1950383</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2022</creationdate><topic>Computer Science - Cryptography and Security</topic><toplevel>online_resources</toplevel><creatorcontrib>Liljestrand, Hans</creatorcontrib><creatorcontrib>Chinea, Carlos</creatorcontrib><creatorcontrib>Denis-Courmont, Rémi</creatorcontrib><creatorcontrib>Ekberg, Jan-Erik</creatorcontrib><creatorcontrib>Asokan, N</creatorcontrib><collection>arXiv Computer Science</collection><collection>arXiv.org</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Liljestrand, Hans</au><au>Chinea, Carlos</au><au>Denis-Courmont, Rémi</au><au>Ekberg, Jan-Erik</au><au>Asokan, N</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Color My World: Deterministic Tagging for Memory Safety</atitle><date>2022-04-07</date><risdate>2022</risdate><abstract>Hardware-assisted memory protection features are increasingly being deployed
in COTS processors. ARMv8.5 Memory Tagging Extensions (MTE) is a recent
example, which has been used to provide probabilistic checks for memory safety.
This use of MTE is not secure against the standard adversary with arbitrary
read/write access to memory. Consequently MTE is used as a software development
tool. In this paper we present the first design for deterministic memory
protection using MTE that can resist the standard adversary, and hence is
suitable for post-deployment memory safety. We describe our compiler extensions
for LLVM Clang implementing static analysis and subsequent MTE instrumentation.
Via a comprehensive evaluation we show that our scheme is effective.</abstract><doi>10.48550/arxiv.2204.03781</doi><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext_linktorsrc |
| identifier | DOI: 10.48550/arxiv.2204.03781 |
| ispartof | |
| issn | |
| language | eng |
| recordid | cdi_arxiv_primary_2204_03781 |
| source | arXiv.org |
| subjects | Computer Science - Cryptography and Security |
| title | Color My World: Deterministic Tagging for Memory Safety |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-02-03T02%3A29%3A26IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-arxiv_GOX&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Color%20My%20World:%20Deterministic%20Tagging%20for%20Memory%20Safety&rft.au=Liljestrand,%20Hans&rft.date=2022-04-07&rft_id=info:doi/10.48550/arxiv.2204.03781&rft_dat=%3Carxiv_GOX%3E2204_03781%3C/arxiv_GOX%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true |