Title | ||
---|---|---|
CHERI: A Hybrid Capability-System Architecture for Scalable Software Compartmentalization |
Abstract | ||
---|---|---|
CHERI extends a conventional RISC Instruction-Set Architecture, compiler, and operating system to support fine-grained, capability-based memory protection to mitigate memory-related vulnerabilities in C-language TCBs. We describe how CHERI capabilities can also underpin a hardware-software object-capability model for application compartmentalization that can mitigate broader classes of attack. Prototyped as an extension to the open-source 64-bit BERI RISC FPGA soft-core processor, Free BSD operating system, and LLVM compiler, we demonstrate multiple orders-of-magnitude improvement in scalability, simplified programmability, and resulting tangible security benefits as compared to compartmentalization based on pure Memory-Management Unit (MMU) designs. We evaluate incrementally deployable CHERI-based compartmentalization using several real-world UNIX libraries and applications. |
Year | DOI | Venue |
---|---|---|
2015 | 10.1109/SP.2015.9 | IEEE Symposiumon Security and Privacy |
Field | DocType | ISSN |
Memory protection,Computer science,Unix,Compiler,Reduced instruction set computing,Software,Software architecture,Systems architecture,Scalability,Embedded system | Conference | 1081-6011 |
Citations | PageRank | References |
43 | 1.47 | 26 |
Authors | ||
15 |
Name | Order | Citations | PageRank |
---|---|---|---|
Robert N. M. Watson | 1 | 488 | 36.14 |
Jonathan Woodruff | 2 | 154 | 6.16 |
Peter G. Neumann | 3 | 633 | 175.98 |
simon w moore | 4 | 217 | 18.83 |
Jonathan Anderson | 5 | 182 | 14.39 |
D. Chisnall | 6 | 238 | 14.94 |
Nirav Dave | 7 | 195 | 14.61 |
Brooks Davis | 8 | 176 | 9.02 |
Khilan Gudka | 9 | 103 | 6.99 |
Ben Laurie | 10 | 297 | 14.00 |
Steven J. Murdoch | 11 | 806 | 57.90 |
Robert Norton | 12 | 135 | 6.15 |
Michael Roe | 13 | 47 | 2.89 |
Stacey Son | 14 | 66 | 3.57 |
Munraj Vadera | 15 | 75 | 2.71 |