all InfoSec news
Summary: MTE As Implemented
Project Zero googleprojectzero.blogspot.com
By Mark Brand, Project Zero
In mid-2022, Project Zero was provided with access to pre-production hardware implementing the ARM MTE specification. This blog post series is based on that review, and includes general conclusions about the effectiveness of MTE as implemented, specifically in the context of preventing the exploitation of memory-safety vulnerabilities.
Despite its limitations, MTE is still by far the most promising path forward for improving C/C++ software security in 2023. The ability of MTE to detect …
access arm blog blog post brand context exploitation general hardware mark memory project project zero review safety series vulnerabilities