{"id":"https://openalex.org/W3210362897","doi":"https://doi.org/10.1145/3458903.3458910","title":"Position Paper:Defending Direct Memory Access with CHERI Capabilities","display_name":"Position Paper:Defending Direct Memory Access with CHERI Capabilities","publication_year":2020,"publication_date":"2020-10-17","ids":{"openalex":"https://openalex.org/W3210362897","doi":"https://doi.org/10.1145/3458903.3458910","mag":"3210362897"},"language":"en","primary_location":{"id":"doi:10.1145/3458903.3458910","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3458903.3458910","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3458903.3458910","source":{"id":"https://openalex.org/S4306418514","display_name":"Hardware and Architectural Support for Security and Privacy","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Hardware and Architectural Support for Security and Privacy","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3458903.3458910","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5086006620","display_name":"A. Theodore Markettos","orcid":"https://orcid.org/0009-0008-4411-2318"},"institutions":[{"id":"https://openalex.org/I241749","display_name":"University of Cambridge","ror":"https://ror.org/013meh722","country_code":"GB","type":"education","lineage":["https://openalex.org/I241749"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"A. Theodore Markettos","raw_affiliation_strings":["University of Cambridge, UK"],"affiliations":[{"raw_affiliation_string":"University of Cambridge, UK","institution_ids":["https://openalex.org/I241749"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5051949965","display_name":"John A. Baldwin","orcid":"https://orcid.org/0000-0002-1902-3523"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"John Baldwin","raw_affiliation_strings":["Ararat River Consulting, UK"],"affiliations":[{"raw_affiliation_string":"Ararat River Consulting, UK","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5000917714","display_name":"Ruslan Bukin","orcid":null},"institutions":[{"id":"https://openalex.org/I241749","display_name":"University of Cambridge","ror":"https://ror.org/013meh722","country_code":"GB","type":"education","lineage":["https://openalex.org/I241749"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Ruslan Bukin","raw_affiliation_strings":["University of Cambridge, UK"],"affiliations":[{"raw_affiliation_string":"University of Cambridge, UK","institution_ids":["https://openalex.org/I241749"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5015261693","display_name":"Peter G. Neumann","orcid":"https://orcid.org/0009-0008-1197-8000"},"institutions":[{"id":"https://openalex.org/I1298353152","display_name":"SRI International","ror":"https://ror.org/05s570m15","country_code":"US","type":"nonprofit","lineage":["https://openalex.org/I1298353152"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Peter G. Neumann","raw_affiliation_strings":["SRI International, USA"],"affiliations":[{"raw_affiliation_string":"SRI International, USA","institution_ids":["https://openalex.org/I1298353152"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5041439799","display_name":"Simon W. Moore","orcid":"https://orcid.org/0000-0002-2806-495X"},"institutions":[{"id":"https://openalex.org/I241749","display_name":"University of Cambridge","ror":"https://ror.org/013meh722","country_code":"GB","type":"education","lineage":["https://openalex.org/I241749"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Simon W. Moore","raw_affiliation_strings":["University of Cambridge, UK"],"affiliations":[{"raw_affiliation_string":"University of Cambridge, UK","institution_ids":["https://openalex.org/I241749"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5013006563","display_name":"Robert N. M. Watson","orcid":"https://orcid.org/0000-0001-8139-8783"},"institutions":[{"id":"https://openalex.org/I241749","display_name":"University of Cambridge","ror":"https://ror.org/013meh722","country_code":"GB","type":"education","lineage":["https://openalex.org/I241749"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Robert N. M. Watson","raw_affiliation_strings":["University of Cambridge, UK"],"affiliations":[{"raw_affiliation_string":"University of Cambridge, UK","institution_ids":["https://openalex.org/I241749"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5086006620"],"corresponding_institution_ids":["https://openalex.org/I241749"],"apc_list":null,"apc_paid":null,"fwci":0.4465,"has_fulltext":true,"cited_by_count":8,"citation_normalized_percentile":{"value":0.68431067,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"9"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12122","display_name":"Physical Unclonable Functions (PUFs) and Hardware Security","score":0.9965999722480774,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7807743549346924},{"id":"https://openalex.org/keywords/bridge","display_name":"Bridge (graph theory)","score":0.5833120942115784},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.5226454734802246},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5072011947631836},{"id":"https://openalex.org/keywords/memory-protection","display_name":"Memory protection","score":0.4743952751159668},{"id":"https://openalex.org/keywords/architecture","display_name":"Architecture","score":0.4711873531341553},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.4462239146232605},{"id":"https://openalex.org/keywords/microcontroller","display_name":"Microcontroller","score":0.43882864713668823},{"id":"https://openalex.org/keywords/threat-model","display_name":"Threat model","score":0.431487113237381},{"id":"https://openalex.org/keywords/position-paper","display_name":"Position paper","score":0.4251413643360138},{"id":"https://openalex.org/keywords/distributed-computing","display_name":"Distributed computing","score":0.40086138248443604},{"id":"https://openalex.org/keywords/memory-management","display_name":"Memory management","score":0.35767775774002075},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.2362559735774994},{"id":"https://openalex.org/keywords/uniform-memory-access","display_name":"Uniform memory access","score":0.140310138463974},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.07629621028900146}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7807743549346924},{"id":"https://openalex.org/C100776233","wikidata":"https://www.wikidata.org/wiki/Q2532492","display_name":"Bridge (graph theory)","level":2,"score":0.5833120942115784},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.5226454734802246},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5072011947631836},{"id":"https://openalex.org/C18131444","wikidata":"https://www.wikidata.org/wiki/Q163585","display_name":"Memory protection","level":5,"score":0.4743952751159668},{"id":"https://openalex.org/C123657996","wikidata":"https://www.wikidata.org/wiki/Q12271","display_name":"Architecture","level":2,"score":0.4711873531341553},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.4462239146232605},{"id":"https://openalex.org/C173018170","wikidata":"https://www.wikidata.org/wiki/Q165678","display_name":"Microcontroller","level":2,"score":0.43882864713668823},{"id":"https://openalex.org/C140547941","wikidata":"https://www.wikidata.org/wiki/Q7797194","display_name":"Threat model","level":2,"score":0.431487113237381},{"id":"https://openalex.org/C78780964","wikidata":"https://www.wikidata.org/wiki/Q7233193","display_name":"Position paper","level":2,"score":0.4251413643360138},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.40086138248443604},{"id":"https://openalex.org/C176649486","wikidata":"https://www.wikidata.org/wiki/Q2308807","display_name":"Memory management","level":3,"score":0.35767775774002075},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.2362559735774994},{"id":"https://openalex.org/C51290061","wikidata":"https://www.wikidata.org/wiki/Q1936765","display_name":"Uniform memory access","level":4,"score":0.140310138463974},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.07629621028900146},{"id":"https://openalex.org/C126322002","wikidata":"https://www.wikidata.org/wiki/Q11180","display_name":"Internal medicine","level":1,"score":0.0},{"id":"https://openalex.org/C142362112","wikidata":"https://www.wikidata.org/wiki/Q735","display_name":"Art","level":0,"score":0.0},{"id":"https://openalex.org/C153349607","wikidata":"https://www.wikidata.org/wiki/Q36649","display_name":"Visual arts","level":1,"score":0.0},{"id":"https://openalex.org/C136085584","wikidata":"https://www.wikidata.org/wiki/Q910289","display_name":"Overlay","level":2,"score":0.0},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3458903.3458910","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3458903.3458910","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3458903.3458910","source":{"id":"https://openalex.org/S4306418514","display_name":"Hardware and Architectural Support for Security and Privacy","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Hardware and Architectural Support for Security and Privacy","raw_type":"proceedings-article"},{"id":"pmh:oai:www.repository.cam.ac.uk:1810/377253","is_oa":true,"landing_page_url":"https://www.repository.cam.ac.uk/handle/1810/377253","pdf_url":null,"source":{"id":"https://openalex.org/S4306401777","display_name":"Apollo (University of Cambridge)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I241749","host_organization_name":"University of Cambridge","host_organization_lineage":["https://openalex.org/I241749"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"Conference Object"}],"best_oa_location":{"id":"doi:10.1145/3458903.3458910","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3458903.3458910","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3458903.3458910","source":{"id":"https://openalex.org/S4306418514","display_name":"Hardware and Architectural Support for Security and Privacy","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Hardware and Architectural Support for Security and Privacy","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G1845087951","display_name":null,"funder_award_id":"HR0011-18-C-0016","funder_id":"https://openalex.org/F4320338294","funder_display_name":"Air Force Research Laboratory"},{"id":"https://openalex.org/G2161612783","display_name":null,"funder_award_id":"FA8750-10-C-0237","funder_id":"https://openalex.org/F4320338294","funder_display_name":"Air Force Research Laboratory"},{"id":"https://openalex.org/G361948359","display_name":null,"funder_award_id":"EPSRC EP","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"},{"id":"https://openalex.org/G4713059963","display_name":null,"funder_award_id":"FA8750","funder_id":"https://openalex.org/F4320332180","funder_display_name":"Defense Advanced Research Projects Agency"},{"id":"https://openalex.org/G5531295971","display_name":null,"funder_award_id":"FA8750-10-C-0237","funder_id":"https://openalex.org/F4320332180","funder_display_name":"Defense Advanced Research Projects Agency"},{"id":"https://openalex.org/G5985048028","display_name":null,"funder_award_id":"HR0011-18-C-0016","funder_id":"https://openalex.org/F4320332180","funder_display_name":"Defense Advanced Research Projects Agency"},{"id":"https://openalex.org/G6442781622","display_name":"IOSEC - Protection and Memory Safety for Input/Output Security","funder_award_id":"EP/R012458/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"},{"id":"https://openalex.org/G8479930842","display_name":null,"funder_award_id":"EP/R012458/1","funder_id":"https://openalex.org/F4320334627","funder_display_name":"Engineering and Physical Sciences Research Council"},{"id":"https://openalex.org/G8615814669","display_name":null,"funder_award_id":"CTSRD","funder_id":"https://openalex.org/F4320332180","funder_display_name":"Defense Advanced Research Projects Agency"}],"funders":[{"id":"https://openalex.org/F4320306078","display_name":"U.S. Department of Defense","ror":"https://ror.org/0447fe631"},{"id":"https://openalex.org/F4320309327","display_name":"Google","ror":"https://ror.org/00njsd438"},{"id":"https://openalex.org/F4320316514","display_name":"Arm","ror":"https://ror.org/04mmhzs81"},{"id":"https://openalex.org/F4320332180","display_name":"Defense Advanced Research Projects Agency","ror":"https://ror.org/02caytj08"},{"id":"https://openalex.org/F4320332815","display_name":"Advanced Research Projects Agency","ror":"https://ror.org/02caytj08"},{"id":"https://openalex.org/F4320334627","display_name":"Engineering and Physical Sciences Research Council","ror":"https://ror.org/0439y7842"},{"id":"https://openalex.org/F4320338294","display_name":"Air Force Research Laboratory","ror":"https://ror.org/02e2egq70"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3210362897.pdf","grobid_xml":"https://content.openalex.org/works/W3210362897.grobid-xml"},"referenced_works_count":20,"referenced_works":["https://openalex.org/W1583301963","https://openalex.org/W2056073317","https://openalex.org/W2060475972","https://openalex.org/W2077090601","https://openalex.org/W2112177563","https://openalex.org/W2157116240","https://openalex.org/W2183498979","https://openalex.org/W2332912570","https://openalex.org/W2604241429","https://openalex.org/W2792548049","https://openalex.org/W2867345499","https://openalex.org/W2914947522","https://openalex.org/W2943086984","https://openalex.org/W3011686340","https://openalex.org/W3025512357","https://openalex.org/W4233037448","https://openalex.org/W4233830094","https://openalex.org/W4243908662","https://openalex.org/W4251039970","https://openalex.org/W6746001320"],"related_works":["https://openalex.org/W2368477821","https://openalex.org/W1584308544","https://openalex.org/W2069613115","https://openalex.org/W2055367414","https://openalex.org/W2013051930","https://openalex.org/W2379457214","https://openalex.org/W2140386982","https://openalex.org/W2052673929","https://openalex.org/W141798819","https://openalex.org/W2138847"],"abstract_inverted_index":{"We":[0,66,82],"propose":[1,67],"new":[2,114],"solutions":[3],"that":[4,39],"can":[5,94],"efficiently":[6],"address":[7],"the":[8,58,90],"problem":[9,25],"of":[10,70,80],"malicious":[11],"memory":[12],"access":[13],"from":[14,73],"pluggable":[15],"computer":[16,33],"peripherals":[17],"and":[18,44,60,97,107],"microcontrollers":[19],"embedded":[20],"within":[21],"a":[22,27,68,99],"system-on-chip.":[23],"This":[24],"represents":[26],"serious":[28],"emerging":[29,85],"threat":[30,59],"to":[31,50,75,102],"total-system":[32],"security.":[34],"Previous":[35],"work":[36],"has":[37],"shown":[38],"existing":[40,121],"defenses":[41],"are":[42],"insufficient":[43],"poorly":[45],"deployed,":[46],"in":[47],"part":[48],"due":[49],"performance":[51],"concerns.":[52],"In":[53],"this":[54],"paper":[55],"we":[56,111],"explore":[57],"its":[61],"implications":[62],"for":[63],"system":[64],"architecture.":[65],"range":[69],"protection":[71,92,96],"techniques,":[72],"lightweight":[74],"heavyweight,":[76],"across":[77],"different":[78],"classes":[79],"systems.":[81],"consider":[83],"how":[84,113],"capability":[86],"architectures":[87],"(and":[88],"specifically":[89],"CHERI":[91],"model)":[93],"enhance":[95],"provide":[98],"convenient":[100],"bridge":[101],"describe":[103,112],"interactions":[104],"among":[105],"software":[106],"hardware":[108],"components.":[109],"Finally,":[110],"schemes":[115],"may":[116],"be":[117],"more":[118],"efficient":[119],"than":[120],"defenses.":[122]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":2},{"year":2022,"cited_by_count":2}],"updated_date":"2026-04-10T15:06:20.359241","created_date":"2025-10-10T00:00:00"}