BEGIN:VCALENDAR VERSION:2.0 PRODID:-//Talks.cam//talks.cam.ac.uk// X-WR-CALNAME:Talks.cam BEGIN:VEVENT SUMMARY:"\;Protecting the forward edge: Is that light at the end of th e tunnel?"\; - Istvan Haller\, Vrije Universiteit DTSTART:20150827T083000Z DTEND:20150827T093000Z UID:TALK60515@talks.cam.ac.uk CONTACT:Microsoft Research Cambridge Talks Admins DESCRIPTION:In recent years academia has been bombarded with a flurry of C ontrol-Flow Integrity research with mitigation and attacks papers dominati ng the top tier conference landscape. Even as the life expectancy of a CFI -based mitigation paper has been limited to 6-12 months in this period\, b oth Microsoft and Google found a way to harness part of this technology in a production setting. The key insight that both companies came up with si multaneously\, was to focus on the protection of forward edges\, where CFI brings significant benefit over existing solutions\, while leaving the st ack the be protected using traditional mitigation. In this talk I will des cribe and analyze the particularities of the forward edge protection schem es that Google successfully pushed into industry\, highlighting unexpected /undocumented deficiencies in their VTable protection scheme. As a solutio n to these issues\, I present a new design for VTable protection\, includi ng a testing methodology\, which ensure an optimal protection scheme. The design was evaluated by modifying the VTable protection pushed into GCC by Google. The modifications do not affect application compatibility in any way relative to the existing solution (key factor in industrially accepted solutions)\, all the while preserving and even reducing overhead. In a wa y\, we got to "have our cake and eat it too". LOCATION:Auditorium\, Microsoft Research Ltd\, 21 Station Road\, Cambridge \, CB1 2FB END:VEVENT END:VCALENDAR