all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

TitanCFI: Toward Enforcing Control-Flow Integrity in the Root-of-Trust. (arXiv:2401.02567v1 [cs.CR])

Add to bookmarks
Jan. 8, 2024, 2:10 a.m. | Emanuele Parisi, Alberto Musa, Simone Manoni, Maicol Ciani, Davide Rossi, Francesco Barchi, Andrea Bartolini, Andrea Acquaviva

cs.CR updates on arXiv.org arxiv.org

Modern RISC-V platforms control and monitor security-critical systems such as
industrial controllers and autonomous vehicles. While these platforms feature a
Root-of-Trust (RoT) to store authentication secrets and enable secure boot
technologies, they often lack Control-Flow Integrity (CFI) enforcement and are
vulnerable to cyber-attacks which divert the control flow of an application to
trigger malicious behaviours. Recent techniques to enforce CFI in RISC-V
systems include ISA modifications or custom hardware IPs, all requiring ad-hoc
binary toolchains or design of CFI primitives …

attacks authentication autonomous autonomous vehicles boot control controllers critical critical systems cyber enable enforcement feature flow industrial integrity monitor platforms risc-v root secrets secure boot security store systems technologies trust vehicles vulnerable

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

Causal Inference with Differentially Private (Clustered) Outcomes 6 hours ago | arxiv.org
algorithm arxiv cs.cr cs.lg +12
An artificial neural network approach to finding the key length of the Vigen\`{e}re cipher 6 hours ago | arxiv.org
accuracy article artificial arxiv +9
Generic Selfish Mining MDP for DAG Protocols 6 hours ago | arxiv.org
analysis arxiv bitcoin breaking +15
Tight Differential Privacy Guarantees for the Shuffle Model with $k$-Randomized Response 6 hours ago | arxiv.org
algorithms arxiv cs.cr data +14
Succinct arguments for QMA from standard assumptions via compiled nonlocal games 6 hours ago | arxiv.org
argument arxiv building crypto +8
On Training a Neural Network to Explain Binaries 6 hours ago | arxiv.org
aid arxiv binary code +15
Transferring Troubles: Cross-Lingual Transferability of Backdoor Attacks in LLMs with Instruction Tuning 6 hours ago | arxiv.org
arxiv attacks backdoor backdoor attacks +14
Leveraging Label Information for Stealthy Data Stealing in Vertical Federated Learning 6 hours ago | arxiv.org
arxiv attack attacks cs.cr +16
An Extensive Survey of Digital Image Steganography: State of the Art 6 hours ago | arxiv.org
adoption art arxiv attention +21

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Professional Services Resident Consultant / Senior Professional Services Resident Consultant - AMS

@ Zscaler | Bengaluru, India
View on infosec-jobs.com

Head of Security, Risk & Compliance

@ Gedeon Richter Pharma GmbH | Budapest, HU
View on infosec-jobs.com

Unarmed Professional Security Officer - County Hospital

@ Allied Universal | Los Angeles, CA, United States
View on infosec-jobs.com

Senior Software Engineer, Privacy Engineering

@ Block | Seattle, WA, United States
View on infosec-jobs.com

Senior Cyber Security Specialist

@ Avaloq | Bioggio, Switzerland
View on infosec-jobs.com
View more jobs