[FRIAM] undefined semantics

Mon May 24 15:35:17 EDT 2021

And it's always going to be an arms race, according to the mathematics and
computation foundations that were layed in the 20th century.
It started with David Hilbert who seeked a proof and was obsessed with
mathematics to be complete, consistent and decidable. This sparked the work
of  Gӧdel  and Turing. First Kurt Gӧdel proved that it's both incomplete
and inconsistent and then Alan Turing came along and proved that
mathematics and computation is undecidable.
So Morpheus may be vulnerability-tolerant, but it might be impossible to
have a vulnerability-proof architecture? At least using current mathematics
and Turing machines, maybe Quantum computers will come to the rescue. I
guess time will tell.

On Mon, 24 May 2021 at 18:11, uǝlƃ ↙↙↙ <gepropella at gmail.com> wrote:

> Morpheus: A Vulnerability-Tolerant Secure Architecture Based on Ensembles
> of Moving Target Defenses with Churn
> https://dl.acm.org/doi/10.1145/3297858.3304037
>
> "Abstract
> Attacks often succeed by abusing the gap between program and machine-level
> semantics– for example, by locating a sensitive pointer, exploiting a bug
> to overwrite this sensitive data, and hijacking the victim program’s
> execution. In this work, we take secure system design on the offensive by
> continuously obfuscating information that attackers need but normal
> programs do not use, such as representation of code and pointers or the
> exact location of code and data.Our secure hardware architecture, Morpheus,
> combines two powerful protections: ensembles of moving target defenses and
> churn. Ensembles of moving target defenses randomize key program values
> (e.g., relocating pointers and encrypting code and pointers) which forces
> attackers to extensively probe the system prior to an attack. To ensure
> attack probes fail, the architecture incorporates churn to transparently
> re-randomize program values underneath the running system.With frequent
> churn, systems quickly become impractically difficult to penetrate.We
> demonstrate Morpheus through a RISC-V-based prototype designed to stop
> control-flow attacks. Each moving target defense in Morpheus uses hardware
> support to individually offer more randomness at a lower cost than previous
> techniques. When ensembled with churn, Morpheus defenses offer strong
> protection against control-flow attacks,with our security testing and
> performance studies revealing: i) high-coverage protection for a broad
> array of control-flow attacks, including protections for advanced attacks
> and an attack disclosed after the design of Morpheus, and ii) negligible
> performance impacts (1%) with churn periods up to50 ms, which our study
> estimates to be at least 5000x faster than the time necessary to possibly
> penetrate Morpheus."
>
> Two of the more interesting citations are:
>
> Undefined behavior: what happened to my code?
> https://dl.acm.org/doi/10.1145/2349896.2349905
>
> Towards optimization-safe systems: analyzing the impact of undefined
> behavior
> https://dl.acm.org/doi/10.1145/2517349.2522728
>
> --
> ↙↙↙ uǝlƃ
> - .... . -..-. . -. -.. -..-. .. ... -..-. .... . .-. .
> FRIAM Applied Complexity Group listserv
> Zoom Fridays 9:30a-12p Mtn GMT-6  bit.ly/virtualfriam
> un/subscribe http://redfish.com/mailman/listinfo/friam_redfish.com
> FRIAM-COMIC http://friam-comic.blogspot.com/
> archives: http://friam.471366.n2.nabble.com/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://redfish.com/pipermail/friam_redfish.com/attachments/20210524/f1ea81f2/attachment.html>