{"id":4113,"date":"2024-06-20T07:59:11","date_gmt":"2024-06-20T12:59:11","guid":{"rendered":"https:\/\/www.darkreading.com\/endpoint-security\/cheri-alliance-aims-to-secure-hardware-memory"},"modified":"2024-06-20T07:59:11","modified_gmt":"2024-06-20T12:59:11","slug":"cheri-alliance-aims-to-secure-hardware-memory","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2024\/06\/20\/cheri-alliance-aims-to-secure-hardware-memory\/","title":{"rendered":"CHERI Alliance Aims to Secure Hardware Memory"},"content":{"rendered":"
<\/a><\/div>\n
<\/div>\n

A new chip security consortium called CHERI Alliance is focused on protecting data stored in hardware memory from cyberattackers.<\/span><\/p>\n

The alliance backs a protection model that isolates the hardware and software to prevent hackers from injecting code into memory that would allow them to take over systems or steal data.<\/span><\/p>\n

“Memory issues represent approximately 70% of the routes taken by cyber attackers,” <\/span>CHERI Alliance said in a statement<\/a><\/span>. The alliance will formally launch in September this year.<\/span><\/p>\n

The memory issues are usually addressed through software techniques or coarse-grained hardware memory protection, says alliance spokesperson Tora Fridholm.<\/span><\/p>\n

“These methods either leave holes or are not very practical. What is unique about CHERI is that the technology adds fine-grained memory protection, with the ability to prevent these issues completely without adding a major overhead,” Fridholm says.<\/span><\/p>\n

The alliance focuses on securing memory in ARM, MIPS and RISC-V architectures, which dominate edge devices.<\/span><\/p>\n

The backing entities include University of Cambridge, the FreeBSD Foundation, Capabilities Limited, lowRISC, and SCI Semiconductor. While ARM dominates the microcontroller and mobile markets, the company is currently not part of the consortium.<\/span><\/p>\n

ARM has been victim to many memory-bound vulnerabilities, including one earlier this month that <\/span>allows hackers to access GPU memory<\/a><\/span>. ARM-based processors also had vulnerabilities related to <\/span>Meltdown<\/a><\/span> and variants of <\/span>Spectre<\/a><\/span>, which allowed hackers to take over memory.<\/span><\/p>\n

Research on Memory Protection<\/h2>\n

The CHERI (Capability Hardware Enhanced RISC Instructions) program originally started off in 2010 as <\/span>a research program with University of Cambridge and SRI International<\/a><\/span>, and was funded by <\/span>DARPA’s CRASH.<\/a><\/span><\/p>\n

As part of the program, researchers developed a CHERI-based hardware with memory protection features. ARM’s prototype Morello board with <\/span>CHERI extensions was reviewed<\/a><\/span> by Microsoft Security Response Center, which provided recommendations to improve the design. <\/span>CHERI was described in a research paper<\/a><\/span> published earlier this year as a “hardware-software capability-based system that extends the ISA, toolchain, programming languages, operating systems, and applications in order to provide complete pointer and memory safety.”<\/span><\/p>\n

CHERI researchers also provide toolkits so C and C++ programmers can add memory protection while code. C++ doesn’t have automatic memory protection mechanisms, unlike newer development tools such as Rust, which leaves space for coders to inject malicious code. Coders need to add specific code to protect memory.<\/span><\/p>\n

Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

A new chip security consortium called CHERI Alliance is focused<\/p>\n","protected":false},"author":12,"featured_media":4114,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[809],"class_list":["post-4113","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","tag-dark-reading"],"featured_image_urls":{"full":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/cheri-alliance-aims-to-secure-hardware-memory.png?fit=1800%2C1013&ssl=1",1800,1013,false],"thumbnail":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/cheri-alliance-aims-to-secure-hardware-memory.png?resize=150%2C150&ssl=1",150,150,true],"medium":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/cheri-alliance-aims-to-secure-hardware-memory.png?fit=300%2C169&ssl=1",300,169,true],"medium_large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/cheri-alliance-aims-to-secure-hardware-memory.png?fit=640%2C360&ssl=1",640,360,true],"large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/cheri-alliance-aims-to-secure-hardware-memory.png?fit=640%2C360&ssl=1",640,360,true],"1536x1536":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/cheri-alliance-aims-to-secure-hardware-memory.png?fit=1536%2C864&ssl=1",1536,864,true],"2048x2048":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/cheri-alliance-aims-to-secure-hardware-memory.png?fit=1800%2C1013&ssl=1",1800,1013,true],"chromenews-featured":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/cheri-alliance-aims-to-secure-hardware-memory.png?fit=1024%2C576&ssl=1",1024,576,true],"chromenews-large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/cheri-alliance-aims-to-secure-hardware-memory.png?resize=825%2C575&ssl=1",825,575,true],"chromenews-medium":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/cheri-alliance-aims-to-secure-hardware-memory.png?resize=590%2C410&ssl=1",590,410,true]},"author_info":{"display_name":"Dark Reading","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/darkreading\/"},"category_info":"Uncategorized<\/a>","tag_info":"Uncategorized","comment_count":"0","jetpack_featured_media_url":"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/cheri-alliance-aims-to-secure-hardware-memory.png?fit=1800%2C1013&ssl=1","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/4113","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=4113"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/4113\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media\/4114"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=4113"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=4113"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=4113"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}