Hardware-Assisted Fine-Grained Control-Flow Integrity - Adding Lasers to Intel's CET/IBT

Explore hardware-assisted fine-grained control-flow integrity techniques in this Linux Foundation conference talk. Delve into memory corruption bugs, coarse-grained and fine-grained control-flow integrity, and Intel's Control-flow Enforcement Technology (CET) with Indirect Branch Tracking (IBT). Learn about prototype matching-based implementations, regular and IBT assembly code, and cross-DSO support methods. Discover the perks and implementation details of FinelBT, including space overheads and performance impacts using SPEC CPU 2017 benchmarks. Gain insights into enhancing security measures against control-flow hijacking attacks in modern computing systems.

SECURITY SUMMIT
Memory Corruption Bugs Enable controllow hiacking
Coarse-Grained Control-Flow Integrity Forward-edges
Fine-Grained Control-Flow Integrity Prototype matching-based implementations
Regular Assembly Code
IBT Assembly Code
FinelBT Cross-DSO support Method 1 - FinelBT Global Flag
FinelBT PLT Assembly Code
FinelBT Cross-DSO support Method 2 - Consulting Shadow Stack (under development)
FinelBT Other perks
FinelBT Implementation
Test Sets
SPEC CPU 2017 (nc)
Space Overheads
Hypotheses
Important People Thank you!