SoftBound: highly compatible and complete spatial memory safety for c
Citations
642 citations
Cites background from "SoftBound: highly compatible and co..."
...Existing C/C++ libraries which have operating system dependencies cannot be used in an enclave environment because system calls are conceptually not available [32]....
[...]
...Since memory safety implementations for C/C++ have high overhead [43], [44], [60], we instead address this problem with a compiler that efficiently enforces two security invariants for code running inside the enclave....
[...]
...Since implementing full memory safety for C/C++ [43], [44], [60] is expensive, we instead provide a compiler that efficiently enforces two region self-integrity invariants for code in an isolated region: region-write-integrity which guarantees that writes through pointers write only to address-taken variables or heap allocations in the isolated region, and that indirect call instructions target only address-taken functions in the region; and region-read-write-integrity, which further guarantees that reads through pointers read only from addresses inside the region....
[...]
635 citations
499 citations
454 citations
Cites background or methods or result from "SoftBound: highly compatible and co..."
...These rules are identical to the corresponding rules of SoftBound [Nagarakatte et al. 2009] and ensure full spatial memory safety of all memory objects in the safe memory....
[...]
...SoftBound [Nagarakatte et al. 2009] with its CETS [Nagarakatte et al. 2010] extension enforces complete memory safety at the cost of 2–4× slowdown....
[...]
...We build upon the formalization of spatial memory safety in SoftBound [Nagarakatte et al. 2009], reuse the same notation, and extend it to support applying spatial memory safety to a subset of memory locations....
[...]
...Ms = writes(E.Ms)ls v(b,e) (E , lhs = rhs) ⇒c (OK, E′) 4.5 The Formal Model of CPI 101 These rules are identical to the corresponding rules of SoftBound [Nagarakatte et al. 2009] and ensure full spatial memory safety of all memory objects in the safe memory....
[...]
...We also compare Levee to two related approaches, SoftBound [Nagarakatte et al. 2009] and control-flow integrity [Abadi et al. 2005a, Zhang and Sekar 2013, Zhang et al. 2013, Niu and Tan 2014a]....
[...]
388 citations
References
4,841 citations
1,158 citations
992 citations
777 citations
736 citations