cfaed, TU Dresden @ EuroSys 2017
Published on in RESILIENCE PATH
Our work on "SGXBounds: Memory Safety for Shielded Execution" has been accepted at EuroSys 2017 - a top conference in computer systems. The work proposes an efficient technique to achieve memory safety for shielded execution. Memory safety is the most critical component for ensuring software reliability against faults, and security against vulnerabilities. Surprisingly, SGXBounds beats the state-of-the-art software AddressSanitizer from Google, and Intel MPX hardware ISA extensions for memory safety! Furthermore, SGXBounds not only detect memory safety violations, but also tolerates them to ensure high availability for software systems. SGXBounds' design is based on a simple idea to use tagged pointer in the context of secure enclaves.
The work was led in the context of cfaed's Resilience Path with the mission of designing safe and secure systems. This is the second paper from cfaed, back-to-back, in the EuroSys computer systems conference. Last year in EuroSys 2016, cfaed / TU Dresden presented HAFT, an efficient technique for fault-tolerance to deal with transient faults in CPUs.
The paper is led by Dmitrii Kuvaiskii, a PhD student from the resilience path @ cfaed, TU Dresden, jointly advised by Christof Fetzer, and Pramod Bhatotia (who recently moved to the University of Edinburgh).
See you in Belgrade!