Repository logo
 

Pointer Provenance in a Capability Architecture

Accepted version
Peer-reviewed

Repository URI

https://www.repository.cam.ac.uk/handle/1810/280459

Repository DOI

https://doi.org/10.17863/CAM.27830
Thumbnail Image

Files

Accepted version (367.22 KB)

Type

Conference Object

Change log

Authors

Abstract

We design and implement a framework for tracking pointer provenance, using our CHERI fat-pointer capability architec- ture to facilitate analysis of security implications of program pointer flows in both user and privileged code, with mini- mal instrumentation. CHERI enforces pointer provenance validity at the architectural level, in the presence of complex pointer arithmetic and type casting. CHERI present new op- portunities for provenance research: we discuss use cases and highlight lessons and open questions from our work.

Description

Keywords

Journal Title

10th USENIX Workshop on Theory and Practice of Provenance

Conference Name

USENIX Theory and Practice of Provenance

Journal ISSN

Volume Title

Publisher

USENIX

Publisher DOI

https://doi.org/10.17863/CAM.27830

Rights and licensing

undefined
Except where otherwised noted, this item's license is described as http://www.rioxx.net/licenses/all-rights-reserved
Sponsorship
DARPA/AFRL FA8750-10-C-0237, Google Chrome University Research Program Award

Collections

University of Cambridge Research Outputs (Articles and Conferences)