![](https://ccweb.imgix.net/https%3A%2F%2Fwww.classcentral.com%2Fimages%2Ficon-black-friday.png?auto=format&ixlib=php-4.1.0&s=fe56b83c82babb2f8fce47a2aed2f85d)
Overview
![](https://ccweb.imgix.net/https%3A%2F%2Fwww.classcentral.com%2Fimages%2Ficon-black-friday.png?auto=format&ixlib=php-4.1.0&s=fe56b83c82babb2f8fce47a2aed2f85d)
This course aims to teach learners how to protect the program call stack from security vulnerabilities using metadata-tag based policies on a tagged architecture. The course covers topics such as stack protection policies, object-level protection, memory safety enforcement, and data-flow integrity. The teaching method involves discussing stack threat taxonomy, presenting policies with performance overhead analysis, and providing a summary of the key concepts. This course is intended for individuals interested in low-level programming languages, software security, and system architecture.
Syllabus
Intro
Overview
The call stack
Stack example
Slack attacks
What if the stack was labeled?
Tagged architecture (the PUMP)
Checking a stack access
What else do we need?
Largest cost: tagging stack memory
What if we're lazy?
Laziness results
Summary
Taught by
IEEE Symposium on Security and Privacy