128-Bit Addressing in RISC-V and Security

More documents

Recommendations

Info

Some FoundaConal Basis • One should recognize that concentraCon on protecCon and authenCcaCon mechanisms provides a narrow view of informaCon security ,and that a narrow view is dangerous .The objecRve of a secure system is to prevent all unauthorized use of informaRon, a negaRve kind of requirement. • Every access to every object must be checked for authority. This principle, when systemaCcally applied, is the primary underpinning of the protecCon system • Validity/AuthenRcity is a REQUIREMENT (Ref D. Clark, personal communicaRons) [2] Schroder & Saltzer, “The protecCon of informaCon in computer systems”, PROCEEDINGS OF THE IEEE, VOL. 63, NO. 9, SEPTEMBER 1975 2016 _NOV _RISCV_WORKSHOP 10
Previous Efforts • Another soluCon is to address each segment with a unique integer which is assigned at the Cme the segment is created, never changed, and not reused even axer the segment has disappeared from the system. Call this the unique integer soluCon. ([3,4,5] & [13]Radin’s H – Handle) [3] US Patent, 4,525,780, “DATA PROCESSING SYSTEM HAVING A MEMORY USING OBJECT- BASED INFORMATION AND A PROTECTION SCHEME …” , 1985 [4] US Patent, 4,821,184,” UNIVERSAL ADDRESSING SYSTEM FOR A DIGITAL DATA PROCESSING SYSTEM”, 1989 [5] Fabry, “ Capability-Based Addressing”, CACM, July 1974 [13] Radin, Schneider, “An Architecture for an Extended Machine With Protected Addressing”, Radin, Schneider, TR 00.2757, IBM May 21, 1976 2016 _NOV _RISCV_WORKSHOP 11
Page 1 and 2: 128-Bit Addressing in RISC-V and Se
Page 3 and 4: Background • Since the late 70’
Page 5 and 6: What Happened • MulCcs at MIT - U
Page 7 and 8: Going Forward • There Time is to
Page 9: ProtecCon ObjecCves • The origina
Page 13 and 14: Strawman - RV128I OBJECT ID Byte Of
Page 15 and 16: What is a Object ? • A Object is
Page 17 and 18: AuthenCcaCon • The address space
Page 19 and 20: Memory Management • Each object c
Page 21 and 22: 64 BIT LINUX -Memory Management Pro
Page 23 and 24: Exascale Issues • Subject to cost
Page 25 and 26: 128- BIT VIRTUAL ADDRESSING -Protec
Page 27 and 28: ACL (Access Control List) - ENTRY P
Page 29 and 30: REFERENCE MONITOR • It must valid
Page 31 and 32: Summary • Compare to CHERI [12] -
Page 33 and 34: References • [12] Robert N.M. Wat
Page 35 and 36: RevocaCon • Every client has a
Page 37 and 38: Some Object UID Math • 60 seconds
Page 39 and 40: ProtecCon in Unified Name Space •
Page 41: Shadow Stack - Architecture Return

128-Bit Addressing in RISC-V and Security

Create successful ePaper yourself

Delete template?

Save as template?