"First Comprehensive Definition of CHERI C Semantics Boosts Memory Safety, Assesses Arm Morello and Microsoft's CHERIoT; Accomplished Using Coq Mechanisation and Cerberus C Semantics"

Formal Mechanised Semantics of CHERI C: Capabilities, Undefined Behaviour, and Provenance | Proceedings of the 29th ACM International Conference on Architectural Support for Programming Languages and Operating Systems, Volume 1

ABSTRACT Memory safety issues are a persistent source of security vulnerabilities, with conventional architectures and the C codebase chronically prone to exploitable errors. The CHERI research project has shown how one can provide radically improved security for that existing codebase with minimal modification, using unforgeable hardware capabilities in place of machine-word pointers in CHERI dialects of C, implemented as adaptions of Clang/LLVM and GCC. CHERI was first prototyped as extensions...