Linux Security Summit: IBM’s presentation

Linux Security Summit: IBM’s presentation

UNICORE member and representative of IBM, Mike Rapoport, jointly with James Bottomley, also from IBM, will give a presentation focused on “Analysing and Improving the Security Properties of Secret Memory“. This talk will take place at the Linux Security Summit (LSS) on October 1 (2:30pm – 3:00pm, Pacific Daylight Time).

In the words of the speakers, “various patches are advancing through the kernel to designate regions of memory as hidden or secret. The current implementation mechanism for almost all of them is to remove them from the direct map of the kernel, meaning that it becomes impossible to refer to the memory from within the kernel without finding a way to map it and if an address in secret memory is ever accessed by the kernel or from another user space process, a page fault will result. The enhanced security for secret memory comes from the fact that most of the attempts to exfiltrate secrets mostly rely either on rop gadgets or privilege escalation. Since root cannot gain access to the secret from userspace because of the lack of direct map entry, the only viable exfiltration mechanism is via rop. Since there are no easy gadgets available to map a kernel address, it involves constructing a complex rop chain, making the exfiltration significantly harder (although not impossible)”. In this session, speakers would like to discuss how the security posture of secret memory could be improved and what its use cases might be.

Check out the conference program and register for the LSS!

Do NOT follow this link or you will be banned from the site!

By continuing to use the site, you agree to the use of cookies. More information. The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.