Cargando…
CoMeT: Configurable Tagged Memory Extension
Commodity processor architectures are releasing various instruction set extensions to support security solutions for the efficient mitigation of memory vulnerabilities. Among them, tagged memory extension (TME), such as ARM MTE and SPARC ADI, can prevent unauthorized memory access by utilizing tagge...
| Autores principales: | , , , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2021
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8623746/ https://www.ncbi.nlm.nih.gov/pubmed/34833846 http://dx.doi.org/10.3390/s21227771 |
| _version_ | 1784606005905063936 |
|---|---|
| author | Lee, Jinjae Pratama, Derry Kim, Minjae Kim, Howon Kwon, Donghyun |
| author_facet | Lee, Jinjae Pratama, Derry Kim, Minjae Kim, Howon Kwon, Donghyun |
| author_sort | Lee, Jinjae |
| collection | PubMed |
| description | Commodity processor architectures are releasing various instruction set extensions to support security solutions for the efficient mitigation of memory vulnerabilities. Among them, tagged memory extension (TME), such as ARM MTE and SPARC ADI, can prevent unauthorized memory access by utilizing tagged memory. However, our analysis found that TME has performance and security issues in practical use. To alleviate these, in this paper, we propose CoMeT, a new instruction set extension for tagged memory. The key idea behind CoMeT is not only to check whether the tag values in the address tag and memory tag are matched, but also to check the access permissions for each tag value. We implemented the prototype of CoMeT on the RISC-V platform. Our evaluation results confirm that CoMeT can be utilized to efficiently implement well-known security solutions, i.e., shadow stack and in-process isolation, without compromising security. |
| format | Online Article Text |
| id | pubmed-8623746 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2021 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-86237462021-11-27 CoMeT: Configurable Tagged Memory Extension Lee, Jinjae Pratama, Derry Kim, Minjae Kim, Howon Kwon, Donghyun Sensors (Basel) Article Commodity processor architectures are releasing various instruction set extensions to support security solutions for the efficient mitigation of memory vulnerabilities. Among them, tagged memory extension (TME), such as ARM MTE and SPARC ADI, can prevent unauthorized memory access by utilizing tagged memory. However, our analysis found that TME has performance and security issues in practical use. To alleviate these, in this paper, we propose CoMeT, a new instruction set extension for tagged memory. The key idea behind CoMeT is not only to check whether the tag values in the address tag and memory tag are matched, but also to check the access permissions for each tag value. We implemented the prototype of CoMeT on the RISC-V platform. Our evaluation results confirm that CoMeT can be utilized to efficiently implement well-known security solutions, i.e., shadow stack and in-process isolation, without compromising security. MDPI 2021-11-22 /pmc/articles/PMC8623746/ /pubmed/34833846 http://dx.doi.org/10.3390/s21227771 Text en © 2021 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article Lee, Jinjae Pratama, Derry Kim, Minjae Kim, Howon Kwon, Donghyun CoMeT: Configurable Tagged Memory Extension |
| title | CoMeT: Configurable Tagged Memory Extension |
| title_full | CoMeT: Configurable Tagged Memory Extension |
| title_fullStr | CoMeT: Configurable Tagged Memory Extension |
| title_full_unstemmed | CoMeT: Configurable Tagged Memory Extension |
| title_short | CoMeT: Configurable Tagged Memory Extension |
| title_sort | comet: configurable tagged memory extension |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8623746/ https://www.ncbi.nlm.nih.gov/pubmed/34833846 http://dx.doi.org/10.3390/s21227771 |
| work_keys_str_mv | AT leejinjae cometconfigurabletaggedmemoryextension AT pratamaderry cometconfigurabletaggedmemoryextension AT kimminjae cometconfigurabletaggedmemoryextension AT kimhowon cometconfigurabletaggedmemoryextension AT kwondonghyun cometconfigurabletaggedmemoryextension |