Don’t miss out! Join us at the next Open Source Summit in Seoul, South Korea (November 4-5). Join us at the premier vendor-neutral open source conference, where developers and technologists come together to collaborate, share knowledge, and explore the latest innovations and advancements in open source technology. Learn more at https://events.linuxfoundation.org/
Linux and CHERI: Back to the Future – Carl Shaw, Codasip
Building on the 1960s security concept of a capability – an unforgable token of authority – CHERI brings a new, practical approach to capabilities for fine grained memory protection to either replace or complement MMU-based virtual memory. CHERI has been in development for nearly 15 years and supports multiple architectures, with a research silicon implementation called Morello having been produced by Arm. It is now being commercialized and proposed as a new RISC-V standard extension, with early RISC-V processor designs now available commercially and in open source implementations. This talk will briefly cover the history of capability machines, what CHERI is and how it is implemented, and how it can provide memory-safety and additional security to Linux.
