Capability Hardware Enhanced RISC Instructions: CHERI Programmer’s Guide

The CHERI Programmer’s Guide documents the software environment for the Capability Hardware Enhanced RISC Instructions (CHERI) prototype developed by SRI International and the University of Cambridge. The Guide is targeted at hardware and software developers working with capability-enhanced software. It describes how to use the CHERI Clang/LLVM compiler suite and CheriBSD operating system – versions of the off-the-shelf LLVM suite and FreeBSD operating system adapted to use CHERI’s protection features – as well as implementation details of both.

[1]  Peter G. Neumann,et al.  Capability Hardware Enhanced RISC Instructions: CHERI User’s guide , 2014 .

[2]  R. Watson,et al.  Capabilities Revisited : A Holistic Approach to Bottom-to-Top Assurance of Trustworthy Systems , 2010 .

[3]  Peter G. Neumann,et al.  Capability Hardware Enhanced RISC Instructions: CHERI Instruction-set architecture , 2014 .

[4]  Peter G. Neumann,et al.  CHERI: a research platform deconflating hardware virtualisation and protection , 2012 .

[5]  Peter G. Neumann,et al.  Clean application compartmentalization with SOAAP (extended version) , 2015 .

[6]  Peter G. Neumann,et al.  CHERI: A Hybrid Capability-System Architecture for Scalable Software Compartmentalization , 2015, 2015 IEEE Symposium on Security and Privacy.

[7]  George V. Neville-Neil,et al.  The Design and Implementation of the FreeBSD ® Operating System Second Edition , 2014 .

[8]  Peter G. Neumann,et al.  The CHERI capability model: Revisiting RISC in an age of risk , 2014, 2014 ACM/IEEE 41st International Symposium on Computer Architecture (ISCA).

[9]  George Neville-Neil,et al.  The Design and Implementation of the FreeBSD Operating System , 2014 .

[10]  Vikram S. Adve,et al.  LLVM: a compilation framework for lifelong program analysis & transformation , 2004, International Symposium on Code Generation and Optimization, 2004. CGO 2004..

[11]  Peter G. Neumann,et al.  Bluespec Extensible RISC Implementation: BERI Hardware reference , 2014 .

[12]  Peter G. Neumann,et al.  Clean Application Compartmentalization with SOAAP , 2015, CCS.

[13]  Peter G. Neumann,et al.  Beyond the PDP-11: Architectural Support for a Memory-Safe C Abstract Machine , 2015, ASPLOS.