More Like this

1. WHISTLE: CPU Abstractions for Hardware and Software Memory Safety Invariants

   https://doi.org/10.1109/TC.2022.3180990  

   Kim, Sungkeun ; Mahmud, Farabi ; Huang, Jiayi ; Majumder, Pritam ; Tsai, Chia-Che ; Muzahid, Abdullah ; Kim, Eun Jung ( June 2022 , IEEE Transactions on Computers)

   Memory safety invariants extracted from a program can help defend and detect against both software and hardware memory violations. For instance, by allowing only specific instructions to access certain memory locations, system can detect out-of-bound or illegal pointer dereferences that lead to correctness and security issues. In this paper, we propose CPU abstractions, called, to specify and check program invariants to provide defense mechanism against both software and hardware memory violations at runtime. ensures that the invariants must be satisfied at every memory accesses. We present a fast invariant address translation and retrieval scheme using a specialized cache. It stores and checks invariants related to global, stack and heap objects. The invariant checks can be performed synchronously or asynchronously. uses synchronous checking for high security-critical programs, while others are protected by asynchronous checking. A fast exception is proposed to alert any violations as soon as possible in order to close the gap for transient attacks. Our evaluation shows that can detect both software and hardware, spatial and temporal memory violations. incurs 53% overhead when checking synchronously, or 15% overhead when checking asynchronously. 

   more » « less
2. Memory-augmented Lyapunov-based safe reinforcement learning: end-to-end safety under uncertainty

   https://doi.org/10.1109/TAI.2023.3238700  

   Jeddi, Ashkan B. ; Dehghani, Nariman L. ; Shafieezadeh, Abdollah ( January 2023 , IEEE Transactions on Artificial Intelligence)
3. Deciding memory safety for single-pass heap-manipulating programs

   https://doi.org/10.1145/3371103  

   Mathur, Umang ; Murali, Adithya ; Krogmeier, Paul ; Madhusudan, P. ; Viswanathan, Mahesh ( January 2020 , Proceedings of the ACM on Programming Languages)
4. Computing-In-Memory Neural Network Accelerators for Safety-Critical Systems: Can Small Device Variations Be Disastrous?

   https://doi.org/10.1145/3508352.3549360  

   Yan, Zheyu ; Hu, Xiaobo Sharon ; Shi, Yiyu ( October 2022 , IEEE/ACM International Conference on Computer-Aided Design)
5. CHEx86: Context-Sensitive Enforcement of Memory Safety via Microcode-Enabled Capabilities

   https://doi.org/10.1109/ISCA45697.2020.00068  

   Sharifi, Rasool ; Venkat, Ashish ( May 2020 , 2020 ACM/IEEE 47th Annual International Symposium on Computer Architecture (ISCA))

   null (Ed.)

   This work introduces the CHEx86 processor architecture for securing applications, including legacy binaries, against a wide array of security exploits that target temporal and spatial memory safety vulnerabilities such as out-of-bounds accesses, use-after-free, double-free, and uninitialized reads, by instrumenting the code at the microcode-level, completely under-the-hood, with only limited access to source-level symbol information. In addition, this work presents a novel scheme for speculatively tracking pointer arithmetic and pointer movement, including the detection of pointer aliases in memory, at the machine code-level using a configurable set of automatically constructed rules. This architecture outperforms the address sanitizer, a state-of-the-art software-based mitigation by 59%, while eliminating porting, deployment, and verification costs that are invariably associated with recompilation. 

   more » « less