Linear capabilities for CHERI (SPLASH 2019 - Student Research Competition) - SPLASH 2019

Write a Blog >>

Sun 20 - Fri 25 October 2019 Athens, Greece

Who

Aaron Lippeveldts, Dominique Devriese

Track

SPLASH 2019 SRC

Time Zone

The program is currently displayed in (GMT+03:00) Beirut.

Use conference time zone: (GMT+03:00) BeirutSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

When

Wed 23 Oct 2019 18:33 - 18:45 at Foyer - Competition - Round 1
Thu 24 Oct 2019 16:15 - 16:30 at Room 1 - Competition - Round 2

Abstract

CHERI is an instruction set extension that adds capability-based addressing. With capability-based addressing, forgeable pointers are replaced by capabilities. Programs have to be able to show they possess an appropriate capability before they can access a memory location.

Linear capabilities are an extension of the idea of regular capabilities. Just like regular capabilities they cannot be forged. Unlike regular capabilities, they additionally cannot be copied or duplicated in any way. Linear capabilities allow us to enforce certain security principles. They can be used to implement a secure calling convention called StkTokens.

In this work we will be designing an ISA extension for CHERI so it can support linear capabilities. We define the semantics of the new and modified instructions. We will also extend QEMU to support this extension. This will then allow us to test our extension with a few basic test programs. While doing this, we pose several questions one should consider when designing an extension of this kind, and propose some possible solutions.

Aaron Lippeveldts

Vrije Universiteit Brussel

Dominique Devriese

Vrije Universiteit Brussel

Belgium

Time Zone

The program is currently displayed in (GMT+03:00) Beirut.

Use conference time zone: (GMT+03:00) BeirutSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

Session Program

Wed 23 Oct
Times are displayed in time zone: Beirut change

	18:00 - 19:30: Competition - Round 1SRC at Foyer

	18:00 - 18:11 Talk		Is Mutation Score a Fair Metric? SRC Beatriz SouzaFederal University of Campina Grande
	18:11 - 18:22 Talk		Designing immersive virtual training environments for experiential learning SRC Kalliopi Evangelia StavrouliaCyprus University of Technology, Andreas LanitisCyprus University of Technology
	18:22 - 18:33 Talk		Debugging Support for Multi-paradigm Concurrent Programs SRC Dominik AumayrJohannes Kepler University Linz, Austria
	18:33 - 18:45 Talk		Linear capabilities for CHERI SRC Aaron LippeveldtsVrije Universiteit Brussel, Dominique DevrieseVrije Universiteit Brussel
	18:45 - 18:56 Talk		An Empirical Study of Programming Language Effect on OSS Development Effort SRC Muna AltherwiSouthampton University
	18:56 - 19:07 Talk		Practical Second Futamura Projection SRC Florian LatifiJohannes Kepler University Linz DOI Pre-print
	19:07 - 19:18 Talk		Gradual Program Analysis SRC Samuel EstepLiberty University, Jenna WiseCarnegie Mellon University, Jonathan AldrichCarnegie Mellon University, Éric TanterUniversity of Chile & Inria Paris, Johannes BaderFacebook
	19:18 - 19:30 Talk		Incremental Scannerless Generalized LR Parsing SRC Maarten P. SijmDelft University of Technology

Thu 24 Oct
Times are displayed in time zone: Beirut change

	16:00 - 17:30: Competition - Round 2SRC at Room 1

	16:00 - 16:15 Talk		Designing immersive virtual training environments for experiential learning SRC Kalliopi Evangelia StavrouliaCyprus University of Technology, Andreas LanitisCyprus University of Technology
	16:15 - 16:30 Talk		Linear capabilities for CHERI SRC Aaron LippeveldtsVrije Universiteit Brussel, Dominique DevrieseVrije Universiteit Brussel
	16:30 - 16:45 Talk		Gradual Program Analysis SRC Samuel EstepLiberty University, Jenna WiseCarnegie Mellon University, Jonathan AldrichCarnegie Mellon University, Éric TanterUniversity of Chile & Inria Paris, Johannes BaderFacebook
	16:45 - 17:00 Talk		Incremental Scannerless Generalized LR Parsing SRC Maarten P. SijmDelft University of Technology
	17:00 - 17:15 Talk		Debugging Support for Multi-paradigm Concurrent Programs SRC Dominik AumayrJohannes Kepler University Linz, Austria
	17:15 - 17:30 Talk		Practical Second Futamura Projection SRC Florian LatifiJohannes Kepler University Linz DOI Pre-print