Memory Tagging: A Memory Efficient Design

ARM recently introduced a security feature called Memory Tagging Extension or MTE, which is designed to defend against common memory safety vulnerabilities, such as buffer overflow and use after free. In this paper, we examine three aspects of MTE. First, we survey how modern software systems, such...

Full description

Saved in:
Bibliographic Details
Published inarXiv.org
Main Authors Partap, Aditi, Boneh, Dan
Format Paper
LanguageEnglish
Published Ithaca Cornell University Library, arXiv.org 03.11.2022
Subjects
Marking
Safety
Security
Online AccessGet full text

Cover

More Information
Summary:ARM recently introduced a security feature called Memory Tagging Extension or MTE, which is designed to defend against common memory safety vulnerabilities, such as buffer overflow and use after free. In this paper, we examine three aspects of MTE. First, we survey how modern software systems, such as Glibc, Android, Chrome, Linux, and LLVM, use MTE. We identify some common weaknesses and propose improvements. Second, we develop and experiment with an architectural improvement to MTE that improves its memory efficiency. Our design enables longer memory tags, which improves the accuracy of MTE. Finally, we discuss a number of enhancements to MTE to improve its security against certain memory safety attacks.
ISSN:2331-8422