Linear capabilities for CHERI (SPLASH 2019 - Student Research Competition) - SPLASH 2019

Write a Blog >>

Sun 20 - Fri 25 October 2019 Athens, Greece

Who

Aaron Lippeveldts, Dominique Devriese

Track

SPLASH 2019 SRC

Time Zone

The program is currently displayed in (GMT+03:00) Beirut.

Use conference time zone: (GMT+03:00) BeirutSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

When

Wed 23 Oct 2019 18:33 - 18:45 at Foyer - Competition - Round 1
Thu 24 Oct 2019 16:15 - 16:30 at Room 1 - Competition - Round 2

Abstract

CHERI is an instruction set extension that adds capability-based addressing. With capability-based addressing, forgeable pointers are replaced by capabilities. Programs have to be able to show they possess an appropriate capability before they can access a memory location.

Linear capabilities are an extension of the idea of regular capabilities. Just like regular capabilities they cannot be forged. Unlike regular capabilities, they additionally cannot be copied or duplicated in any way. Linear capabilities allow us to enforce certain security principles. They can be used to implement a secure calling convention called StkTokens.

In this work we will be designing an ISA extension for CHERI so it can support linear capabilities. We define the semantics of the new and modified instructions. We will also extend QEMU to support this extension. This will then allow us to test our extension with a few basic test programs. While doing this, we pose several questions one should consider when designing an extension of this kind, and propose some possible solutions.

Aaron Lippeveldts

Vrije Universiteit Brussel

Dominique Devriese

Vrije Universiteit Brussel

Belgium

Time Zone

The program is currently displayed in (GMT+03:00) Beirut.

Use conference time zone: (GMT+03:00) BeirutSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

Session Program

Wed 23 Oct
Displayed time zone: Beirut change

	18:00 - 19:30	Competition - Round 1SRC at Foyer

	18:00 11m Talk		Is Mutation Score a Fair Metric? SRC Beatriz Souza Federal University of Campina Grande
	18:11 11m Talk		Designing immersive virtual training environments for experiential learning SRC Kalliopi Evangelia Stavroulia Cyprus University of Technology, Andreas Lanitis Cyprus University of Technology
	18:22 11m Talk		Debugging Support for Multi-paradigm Concurrent Programs SRC Dominik Aumayr Johannes Kepler University Linz, Austria
	18:33 11m Talk		Linear capabilities for CHERI SRC Aaron Lippeveldts Vrije Universiteit Brussel, Dominique Devriese Vrije Universiteit Brussel
	18:45 11m Talk		An Empirical Study of Programming Language Effect on OSS Development Effort SRC Muna Altherwi Southampton University
	18:56 11m Talk		Practical Second Futamura Projection SRC Florian Latifi Johannes Kepler University Linz DOI Pre-print
	19:07 11m Talk		Gradual Program Analysis SRC Samuel Estep Liberty University, Jenna DiVincenzo (Wise) Carnegie Mellon University, Jonathan Aldrich Carnegie Mellon University, Éric Tanter University of Chile & Inria Paris, Johannes Bader Facebook
	19:18 11m Talk		Incremental Scannerless Generalized LR Parsing SRC Maarten P. Sijm Delft University of Technology

Thu 24 Oct
Displayed time zone: Beirut change

	16:00 - 17:30	Competition - Round 2SRC at Room 1

	16:00 15m Talk		Designing immersive virtual training environments for experiential learning SRC Kalliopi Evangelia Stavroulia Cyprus University of Technology, Andreas Lanitis Cyprus University of Technology
	16:15 15m Talk		Linear capabilities for CHERI SRC Aaron Lippeveldts Vrije Universiteit Brussel, Dominique Devriese Vrije Universiteit Brussel
	16:30 15m Talk		Gradual Program Analysis SRC Samuel Estep Liberty University, Jenna DiVincenzo (Wise) Carnegie Mellon University, Jonathan Aldrich Carnegie Mellon University, Éric Tanter University of Chile & Inria Paris, Johannes Bader Facebook
	16:45 15m Talk		Incremental Scannerless Generalized LR Parsing SRC Maarten P. Sijm Delft University of Technology
	17:00 15m Talk		Debugging Support for Multi-paradigm Concurrent Programs SRC Dominik Aumayr Johannes Kepler University Linz, Austria
	17:15 15m Talk		Practical Second Futamura Projection SRC Florian Latifi Johannes Kepler University Linz DOI Pre-print