Balancing Disruption and Deployability in the CHERI Instruction-Set Architecture (ISA)
Accepted version
Peer-reviewed
Repository URI
Repository DOI
Change log
Authors
Watson, RNM
Neumann, PG
Moore, SW
Abstract
For over two-and-a-half decades, dating to the first widespread commercial deployment of the Internet, commodity processor architectures have failed to provide robust and secure foundations for communication and commerce. This is in large part due to the omission of architectural features allowing efficient implementation of the Principle of Least Privilege, which dictates that software runs only with the rights it requires to operate [19, 20]. Without this support, the impact of inevitable vulnerabilities is multiplied as successful attackers gain easy access to unnecessary rights – and often, all rights – in software systems.
Description
Title
Balancing Disruption and Deployability in the CHERI Instruction-Set Architecture (ISA)
Keywords
Is Part Of
New Solutions for Cybersecurity
Book type
Publisher
MIT Press
Publisher DOI
ISBN
9780262535373