Midas: Systematic Kernel TOCTTOU Protection

Double-fetch bugs are a plague across all major operating system kernels. They occur when data is fetched twice across the user/kernel trust boundary while allowing concurrent modification. Such bugs enable an attacker to illegally access memory, cause denial of service, or to escalate privileges. So far, the only protection against double-fetch bugs is to detect and fix them. However, they remain incredibly hard to find. Similarly, they fundamentally prohibit efficient, kernel-based stateful system call filtering. We propose Midas to mitigate double-fetch bugs. Midas creates on-demand snapshots and copies of accessed data, enforcing our key invariant that throughout a syscall's lifetime, every read to a userspace object will return the same value. Midas shows no noticeable drop in performance when evaluated on compute-bound workloads. On system call heavy workloads, Midas incurs 0.2-14% performance overhead, while protecting the kernel against any TOCTTOU attacks. On average, Midas shows a 3.4% overhead on diverse workloads across two benchmark suites.

Midas: Systematic Kernel TOCTTOU Protection

Secure Interface Design Leveraging Hardware/Software Support

End-to-end kernel learning via generative random Fourier features

An Open-Hardware Coarse-Grained Reconfigurable Array for Edge Computing

Secure Interface Design Leveraging Hardware/Software Support

An Open-Hardware Coarse-Grained Reconfigurable Array for Edge Computing

End-to-end kernel learning via generative random Fourier features