|![[Search]](http://talks.cam.ac.uk/images/search.gif?1209136071)
|![[A-Z Index]](http://talks.cam.ac.uk/images/az.gif?1209136071)
|![[Contact]](http://talks.cam.ac.uk/images/contact.gif?1209136071)
||![[University of Cambridge]](http://talks.cam.ac.uk/images/identifier2.gif?1209136071){kind=small} |
COOKIES: By using this website you agree that we can place Google Analytics Cookies on your device for performance monitoring. | ![[Talks.cam]](http://talks.cam.ac.uk/images/talkslogosmall.gif?1209136071) |
University of Cambridge > Talks.cam > Microsoft Research Cambridge, public talks > "Protecting the forward edge: Is that light at the end of the tunnel?"
"Protecting the forward edge: Is that light at the end of the tunnel?"Add to your list(s) Download to your calendar using vCal
If you have a question about this talk, please contact Microsoft Research Cambridge Talks Admins. Please be aware that this event may be recorded. Microsoft will own the copyright of any recording and reserves the right to distribute it as required. In recent years academia has been bombarded with a flurry of Control-Flow Integrity research with mitigation and attacks papers dominating the top tier conference landscape. Even as the life expectancy of a CFI -based mitigation paper has been limited to 6-12 months in this period, both Microsoft and Google found a way to harness part of this technology in a production setting. The key insight that both companies came up with simultaneously, was to focus on the protection of forward edges, where CFI brings significant benefit over existing solutions, while leaving the stack the be protected using traditional mitigation. In this talk I will describe and analyze the particularities of the forward edge protection schemes that Google successfully pushed into industry, highlighting unexpected/undocumented deficiencies in their VTable protection scheme. As a solution to these issues, I present a new design for VTable protection, including a testing methodology, which ensure an optimal protection scheme. The design was evaluated by modifying the VTable protection pushed into GCC by Google. The modifications do not affect application compatibility in any way relative to the existing solution (key factor in industrially accepted solutions), all the while preserving and even reducing overhead. In a way, we got to “have our cake and eat it too”. This talk is part of the Microsoft Research Cambridge, public talks series. This talk is included in these lists:
Note that ex-directory lists are not shown. |
Other listsDesign and use of chemical tools to modulate gene expression in cancer cells based on the targeting of DNA methyltransferase CMS Special Lectures From Genotype to Phenotype: Resources and Challenges (10th June 2009, Hinxton) APDE Leverhulme Lecture British Computer Society SPA CambridgeOther talksMaking Refuge: Calais and Cambridge Climate change, archaeology and tradition in an Alaskan Yup'ik Village Short-Selling Restrictions and Returns: a Natural Experiment Neurological Problems Adaptation in log-concave density estimation |
Istvan Haller, Vrije Universiteit 
Thursday 27 August 2015, 09:30-10:30