Explore an advanced Linux kernel memory protection system in this conference talk. Delve into HotBPF++, an enhanced version of HotBPF, designed to address vulnerabilities during the critical time between disclosure and patching. Learn about its automatic deployment, on-the-fly enabling, hardware independence, and lightweight design. Discover how HotBPF++ expands protection beyond heap corruption to other memory regions and detects root causes of corruptions. Examine the core concepts, integrated protection policies covering common errors, and performance evaluations using benchmarks. Gain insights into the system's security improvements through real-world vulnerability demonstrations.
HotBPF++ - A More Powerful Memory Protection for the Linux Kernel
Overview
Syllabus
HotBPF++: A More Powerful Memory Protection for the Linux Kernel - Zicheng Wang & Yueqi Chen
Taught by
Linux Foundation
Tags
Related Courses
-
HotBPF - On-demand and On-the-fly Memory Protection for the Linux Kernel
-
MPK/PKS Linux Kernel Compartmentalization
-
Thwarting Unknown Bugs - Hardening Features in the Mainline Linux Kernel
-
Kernel Self-Protection Project: Eliminating Bug Classes and Blocking Exploitation Techniques
-
iOS 10 Kernel Heap Revisited
-
A New Proposal for Protecting Kernel Data Memory
