{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,9]],"date-time":"2026-06-09T16:28:24Z","timestamp":1781022504753,"version":"3.54.1"},"publisher-location":"New York, NY, USA","reference-count":90,"publisher":"ACM","license":[{"start":{"date-parts":[[2021,10,6]],"date-time":"2021-10-06T00:00:00Z","timestamp":1633478400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by-nc-sa\/4.0\/"}],"funder":[{"DOI":"10.13039\/100000006","name":"Office of Naval Research","doi-asserted-by":"publisher","award":["N00014-17-1-2996"],"award-info":[{"award-number":["N00014-17-1-2996"]}],"id":[{"id":"10.13039\/100000006","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100000001","name":"NSF (National Science Foundation)","doi-asserted-by":"publisher","award":["CNS-1618213, CNS-1900803, CNS-1955498"],"award-info":[{"award-number":["CNS-1618213, CNS-1900803, CNS-1955498"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"name":"Google Faculty Research"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2021,10,6]]},"DOI":"10.1145\/3471621.3471849","type":"proceedings-article","created":{"date-parts":[[2021,10,7]],"date-time":"2021-10-07T14:50:46Z","timestamp":1633618246000},"page":"119-134","source":"Crossref","is-referenced-by-count":12,"title":["Fast Intra-kernel Isolation and Security with IskiOS"],"prefix":"10.1145","author":[{"given":"Spyridoula","family":"Gravani","sequence":"first","affiliation":[{"name":"University of Rochester, US"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Mohammad","family":"Hedayati","sequence":"additional","affiliation":[{"name":"University of Rochester, US"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"John","family":"Criswell","sequence":"additional","affiliation":[{"name":"University of Rochester, US"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Michael L.","family":"Scott","sequence":"additional","affiliation":[{"name":"University of Rochester, US"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2021,10,7]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/1609956.1609960"},{"key":"e_1_3_2_1_2_1","unstructured":"Advanced Micro Devices. 2017. AMD64 Architecture Programmer\u2019s Manual.  Advanced Micro Devices. 2017. AMD64 Architecture Programmer\u2019s Manual."},{"key":"e_1_3_2_1_3_1","volume-title":"Dangling Pointer: Smashing the Pointer for Fun and Profit. In Black Hat USA.","author":"Afek Jonathan","year":"2007","unstructured":"Jonathan Afek and Adi Sharabani . 2007 . Dangling Pointer: Smashing the Pointer for Fun and Profit. In Black Hat USA. Jonathan Afek and Adi Sharabani. 2007. Dangling Pointer: Smashing the Pointer for Fun and Profit. In Black Hat USA."},{"key":"e_1_3_2_1_4_1","volume-title":"Read: Preventing Disclosure Exploits in Executable Code. In 21st ACM SIGSAC Conf. on Computer and Communications Security (CCS)","author":"Backes Michael","year":"2014","unstructured":"Michael Backes , Thorsten Holz , Benjamin Kollenda , Philipp Koppe , Stefan N\u00fcrnberger , and Jannik Pewny . 2014 . You Can Run but You Can\u2019t Read: Preventing Disclosure Exploits in Executable Code. In 21st ACM SIGSAC Conf. on Computer and Communications Security (CCS) . Scottsdale, AR. https:\/\/doi.org\/10.1145\/2660267.2660378 Michael Backes, Thorsten Holz, Benjamin Kollenda, Philipp Koppe, Stefan N\u00fcrnberger, and Jannik Pewny. 2014. You Can Run but You Can\u2019t Read: Preventing Disclosure Exploits in Executable Code. In 21st ACM SIGSAC Conf. on Computer and Communications Security (CCS). Scottsdale, AR. https:\/\/doi.org\/10.1145\/2660267.2660378"},{"key":"e_1_3_2_1_5_1","volume-title":"Bovet and Marco Cesati","author":"P.","year":"2003","unstructured":"D.\u00a0 P. Bovet and Marco Cesati . 2003 . Understanding the LINUX Kernel(2nd ed.). O\u2019Reilly , Sebastopol, CA. D.\u00a0P. Bovet and Marco Cesati. 2003. Understanding the LINUX Kernel(2nd ed.). O\u2019Reilly, Sebastopol, CA."},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2016.23364"},{"key":"e_1_3_2_1_7_1","volume-title":"http:\/\/www.brendangregg.com\/blog\/2018-02-09\/kpti-kaiser-meltdown-performance.html[Online","author":"Bregg Brendan","year":"2020","unstructured":"Brendan Bregg . 2018. KPTI\/ KAISER Meltdown Initial Performance Regressions . http:\/\/www.brendangregg.com\/blog\/2018-02-09\/kpti-kaiser-meltdown-performance.html[Online ; accessed 10- November - 2020 ]. Brendan Bregg. 2018. KPTI\/KAISER Meltdown Initial Performance Regressions. http:\/\/www.brendangregg.com\/blog\/2018-02-09\/kpti-kaiser-meltdown-performance.html[Online; accessed 10-November-2020]."},{"key":"e_1_3_2_1_8_1","volume-title":"Article 16 (April","author":"Burow Nathan","year":"2017","unstructured":"Nathan Burow , Scott\u00a0 A. Carr , Joseph Nash , Per Larsen , Michael Franz , Stefan Brunthaler , and Mathias Payer . 2017. Control-Flow Integrity: Precision, Security, and Performance. ACM Computing Surveys (CSUR) 50, 1 , Article 16 (April 2017 ). https:\/\/doi.org\/10.1145\/3054924 Nathan Burow, Scott\u00a0A. Carr, Joseph Nash, Per Larsen, Michael Franz, Stefan Brunthaler, and Mathias Payer. 2017. Control-Flow Integrity: Precision, Security, and Performance. ACM Computing Surveys (CSUR) 50, 1, Article 16 (April 2017). https:\/\/doi.org\/10.1145\/3054924"},{"key":"e_1_3_2_1_9_1","volume-title":"SoK: Shining Light on Shadow Stacks. In 40th IEEE Symp. on Security and Privacy (S&P)","author":"Burow N.","year":"2019","unstructured":"N. Burow , X. Zhang , and M. Payer . 2019 . SoK: Shining Light on Shadow Stacks. In 40th IEEE Symp. on Security and Privacy (S&P) . Los Alamitos, CA, 1239\u20131253. https:\/\/doi.org\/10.1109\/SP. 2019 .00076 N. Burow, X. Zhang, and M. Payer. 2019. SoK: Shining Light on Shadow Stacks. In 40th IEEE Symp. on Security and Privacy (S&P). Los Alamitos, CA, 1239\u20131253. https:\/\/doi.org\/10.1109\/SP.2019.00076"},{"key":"e_1_3_2_1_10_1","volume-title":"Control-flow Bending: On the Effectiveness of Control-flow Integrity. In 24th USENIX Security Symp. (SEC). Washington, D.C.http:\/\/dl.acm.org\/citation.cfm?id=2831143","author":"Carlini Nicolas","year":"2015","unstructured":"Nicolas Carlini , Antonio Barresi , Mathias Payer , David Wagner , and Thomas\u00a0 R. Gross . 2015 . Control-flow Bending: On the Effectiveness of Control-flow Integrity. In 24th USENIX Security Symp. (SEC). Washington, D.C.http:\/\/dl.acm.org\/citation.cfm?id=2831143 .2831154 Nicolas Carlini, Antonio Barresi, Mathias Payer, David Wagner, and Thomas\u00a0R. Gross. 2015. Control-flow Bending: On the Effectiveness of Control-flow Integrity. In 24th USENIX Security Symp. (SEC). Washington, D.C.http:\/\/dl.acm.org\/citation.cfm?id=2831143.2831154"},{"key":"e_1_3_2_1_11_1","volume-title":"DataShield: Configurable Data Confidentiality and Integrity. In 12th ACM Asia Conf. on Computer & Communications Security (ASIA CCS). Abu Dhabi, United Arab Emirates. https:\/\/doi.org\/10","author":"A.","unstructured":"Scott\u00a0 A. Carr and Mathias Payer. 2017 . DataShield: Configurable Data Confidentiality and Integrity. In 12th ACM Asia Conf. on Computer & Communications Security (ASIA CCS). Abu Dhabi, United Arab Emirates. https:\/\/doi.org\/10 .1145\/3052973.3052983 Scott\u00a0A. Carr and Mathias Payer. 2017. DataShield: Configurable Data Confidentiality and Integrity. In 12th ACM Asia Conf. on Computer & Communications Security (ASIA CCS). Abu Dhabi, United Arab Emirates. https:\/\/doi.org\/10.1145\/3052973.3052983"},{"key":"e_1_3_2_1_12_1","volume-title":"The Evolution of CFI Attacks and Defenses. https:\/\/github.com\/microsoft\/MSRC-Security-Research\/tree\/master\/presentations\/2018_02_OffensiveCon[Online","author":"Microsoft Security\u00a0Response Center","year":"2020","unstructured":"Microsoft Security\u00a0Response Center . 2018. The Evolution of CFI Attacks and Defenses. https:\/\/github.com\/microsoft\/MSRC-Security-Research\/tree\/master\/presentations\/2018_02_OffensiveCon[Online ; accessed 03- December - 2020 ]. Microsoft Security\u00a0Response Center. 2018. The Evolution of CFI Attacks and Defenses. https:\/\/github.com\/microsoft\/MSRC-Security-Research\/tree\/master\/presentations\/2018_02_OffensiveCon[Online; accessed 03-December-2020]."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICDSC.2001.918971"},{"key":"e_1_3_2_1_14_1","volume-title":"https:\/\/clang.llvm.org\/docs\/SafeStack.html [Online","author":"Documentation Clang","year":"2021","unstructured":"Clang Documentation . [n.d.]. SafeStack. https:\/\/clang.llvm.org\/docs\/SafeStack.html [Online ; accessed 18- June - 2021 ]. Clang Documentation. [n.d.]. SafeStack. https:\/\/clang.llvm.org\/docs\/SafeStack.html [Online; accessed 18-June-2021]."},{"key":"e_1_3_2_1_15_1","volume-title":"ShadowCallStack LLVM Pass. https:\/\/clang.llvm.org\/docs\/ShadowCallStack.html [Online","author":"Documentation Clang","year":"2020","unstructured":"Clang Documentation . [n.d.]. ShadowCallStack LLVM Pass. https:\/\/clang.llvm.org\/docs\/ShadowCallStack.html [Online ; accessed 03- December - 2020 ]. Clang Documentation. [n.d.]. ShadowCallStack LLVM Pass. https:\/\/clang.llvm.org\/docs\/ShadowCallStack.html [Online; accessed 03-December-2020]."},{"key":"e_1_3_2_1_16_1","volume-title":"PKU Pitfalls: Attacks on PKU-based Memory Isolation Systems. In 29th USENIX Security Symp. (SEC), Srdjan Capkun and Franziska Roesner (Eds.). 1409\u20131426","author":"Connor Joseph","year":"2020","unstructured":"R.\u00a0 Joseph Connor , Tyler McDaniel , Jared\u00a0 M. Smith , and Max Schuchard . 2020 . PKU Pitfalls: Attacks on PKU-based Memory Isolation Systems. In 29th USENIX Security Symp. (SEC), Srdjan Capkun and Franziska Roesner (Eds.). 1409\u20131426 . https:\/\/www.usenix.org\/Conf.\/usenixsecurity20\/presentation\/connor R.\u00a0Joseph Connor, Tyler McDaniel, Jared\u00a0M. Smith, and Max Schuchard. 2020. PKU Pitfalls: Attacks on PKU-based Memory Isolation Systems. In 29th USENIX Security Symp. (SEC), Srdjan Capkun and Franziska Roesner (Eds.). 1409\u20131426. https:\/\/www.usenix.org\/Conf.\/usenixsecurity20\/presentation\/connor"},{"key":"e_1_3_2_1_17_1","volume-title":"Losing Control: On the Effectiveness of Control-Flow Integrity Under Stack Attacks. In 22nd ACM SIGSAC Conf. on Computer and Communications Security (CCS)","author":"Conti Mauro","year":"2015","unstructured":"Mauro Conti , Stephen Crane , Lucas Davi , Michael Franz , Per Larsen , Marco Negro , Christopher Liebchen , Mohaned Qunaibit , and Ahmad-Reza Sadeghi . 2015 . Losing Control: On the Effectiveness of Control-Flow Integrity Under Stack Attacks. In 22nd ACM SIGSAC Conf. on Computer and Communications Security (CCS) . Denver, CO. https:\/\/doi.org\/10.1145\/2810103.2813671 Mauro Conti, Stephen Crane, Lucas Davi, Michael Franz, Per Larsen, Marco Negro, Christopher Liebchen, Mohaned Qunaibit, and Ahmad-Reza Sadeghi. 2015. Losing Control: On the Effectiveness of Control-Flow Integrity Under Stack Attacks. In 22nd ACM SIGSAC Conf. on Computer and Communications Security (CCS). Denver, CO. https:\/\/doi.org\/10.1145\/2810103.2813671"},{"key":"e_1_3_2_1_18_1","volume-title":"Fun with NULL pointers. https:\/\/lwn.net\/Articles\/342330\/ [Online","author":"Corbet Jonathan","year":"2020","unstructured":"Jonathan Corbet . 2009. Fun with NULL pointers. https:\/\/lwn.net\/Articles\/342330\/ [Online ; accessed 03- December - 2020 ]. Jonathan Corbet. 2009. Fun with NULL pointers. https:\/\/lwn.net\/Articles\/342330\/ [Online; accessed 03-December-2020]."},{"key":"e_1_3_2_1_19_1","volume-title":"12th USENIX Security Symp. (SEC)","author":"Cowan Crispin","year":"2003","unstructured":"Crispin Cowan , Steve Beattie , John Johansen , and Perry Wagle . 2003 . Pointguard\u2122: Protecting Pointers From Buffer Overflow Vulnerabilities . In 12th USENIX Security Symp. (SEC) . Washington, DC. Crispin Cowan, Steve Beattie, John Johansen, and Perry Wagle. 2003. Pointguard\u2122: Protecting Pointers From Buffer Overflow Vulnerabilities. In 12th USENIX Security Symp. (SEC). Washington, DC."},{"key":"e_1_3_2_1_20_1","volume-title":"StackGuard: Automatic Adaptive Detection and Prevention of Buffer-overflow Attacks. In 7th USENIX Security Symp. (SEC)","author":"Cowan Crispin","year":"1998","unstructured":"Crispin Cowan , Calton Pu , Dave Maier , Heather Hintony , Jonathan Walpole , Peat Bakke , Steve Beattie , Aaron Grier , Perry Wagle , and Qian Zhang . 1998 . StackGuard: Automatic Adaptive Detection and Prevention of Buffer-overflow Attacks. In 7th USENIX Security Symp. (SEC) . San Antonio, TX. http:\/\/dl.acm.org\/citation.cfm?id=1267549.1267554 Crispin Cowan, Calton Pu, Dave Maier, Heather Hintony, Jonathan Walpole, Peat Bakke, Steve Beattie, Aaron Grier, Perry Wagle, and Qian Zhang. 1998. StackGuard: Automatic Adaptive Detection and Prevention of Buffer-overflow Attacks. In 7th USENIX Security Symp. (SEC). San Antonio, TX. http:\/\/dl.acm.org\/citation.cfm?id=1267549.1267554"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.52"},{"key":"e_1_3_2_1_22_1","volume-title":"KCoFI: Complete Control-Flow Integrity for Commodity Operating System Kernels. In 35th IEEE Symp. on Security and Privacy (S&P)","author":"Criswell John","year":"2014","unstructured":"John Criswell , Nathan Dautenhahn , and Vikram Adve . 2014 . KCoFI: Complete Control-Flow Integrity for Commodity Operating System Kernels. In 35th IEEE Symp. on Security and Privacy (S&P) . San Jose, CA. https:\/\/doi.org\/10.1109\/SP. 2014.26 John Criswell, Nathan Dautenhahn, and Vikram Adve. 2014. KCoFI: Complete Control-Flow Integrity for Commodity Operating System Kernels. In 35th IEEE Symp. on Security and Privacy (S&P). San Jose, CA. https:\/\/doi.org\/10.1109\/SP.2014.26"},{"key":"e_1_3_2_1_23_1","volume-title":"The Performance Cost of Shadow Stacks and Stack Canaries. In 10th ACM Asia Conf. on Computer & Communications Security (ASIACCS)","author":"Dang H.Y.","year":"2015","unstructured":"Thurston\u00a0 H.Y. Dang , Petros Maniatis , and David Wagner . 2015 . The Performance Cost of Shadow Stacks and Stack Canaries. In 10th ACM Asia Conf. on Computer & Communications Security (ASIACCS) . Singapore, Republic of Singapore. https:\/\/doi.org\/10.1145\/2714576.2714635 Thurston\u00a0H.Y. Dang, Petros Maniatis, and David Wagner. 2015. The Performance Cost of Shadow Stacks and Stack Canaries. In 10th ACM Asia Conf. on Computer & Communications Security (ASIACCS). Singapore, Republic of Singapore. https:\/\/doi.org\/10.1145\/2714576.2714635"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/2694344.2694386"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/1966913.1966920"},{"key":"e_1_3_2_1_26_1","volume-title":"Shielding Software From Privileged Side-Channel Attacks. In 27th USENIX Security Symp. (SEC)","author":"Dong Xiaowan","year":"2018","unstructured":"Xiaowan Dong , Zhuojia Shen , John Criswell , Alan\u00a0 L. Cox , and Sandhya Dwarkadas . 2018 . Shielding Software From Privileged Side-Channel Attacks. In 27th USENIX Security Symp. (SEC) . Baltimore, MD. https:\/\/www.usenix.org\/Conf.\/usenixsecurity18\/presentation\/dong Xiaowan Dong, Zhuojia Shen, John Criswell, Alan\u00a0L. Cox, and Sandhya Dwarkadas. 2018. Shielding Software From Privileged Side-Channel Attacks. In 27th USENIX Security Symp. (SEC). Baltimore, MD. https:\/\/www.usenix.org\/Conf.\/usenixsecurity18\/presentation\/dong"},{"key":"e_1_3_2_1_27_1","volume-title":"Kernel Address Space Layout Randomization. https:\/\/lwn.net\/Articles\/569635 [Online","author":"Edge Jake","year":"2019","unstructured":"Jake Edge . 2013. Kernel Address Space Layout Randomization. https:\/\/lwn.net\/Articles\/569635 [Online ; accessed 11- March - 2019 ]. Jake Edge. 2013. Kernel Address Space Layout Randomization. https:\/\/lwn.net\/Articles\/569635 [Online; accessed 11-March-2019]."},{"key":"e_1_3_2_1_28_1","unstructured":"Hiroaki Etoh. 2004. Gcc Extension for Protecting Applications from Stack-smashing Attacks.  Hiroaki Etoh. 2004. Gcc Extension for Protecting Applications from Stack-smashing Attacks."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.53"},{"key":"e_1_3_2_1_30_1","volume-title":"On the Effectiveness of Type-based Control Flow Integrity. In 34th Annual Computer Security Applications Conf. (ACSAC)","author":"Farkhani Reza\u00a0Mirzazade","year":"2018","unstructured":"Reza\u00a0Mirzazade Farkhani , Saman Jafari , Sajjad Arshad , William Robertson , Engin Kirda , and Hamed Okhravi . 2018 . On the Effectiveness of Type-based Control Flow Integrity. In 34th Annual Computer Security Applications Conf. (ACSAC) . San Juan, PR. https:\/\/doi.org\/10.1145\/3274694.3274739 Reza\u00a0Mirzazade Farkhani, Saman Jafari, Sajjad Arshad, William Robertson, Engin Kirda, and Hamed Okhravi. 2018. On the Effectiveness of Type-based Control Flow Integrity. In 34th Annual Computer Security Applications Conf. (ACSAC). San Juan, PR. https:\/\/doi.org\/10.1145\/3274694.3274739"},{"key":"e_1_3_2_1_31_1","volume-title":"Fine-Grained Control-Flow Integrity for Kernel Software. In 1st IEEE European Symp. on Security and Privacy (EuroS&P)","author":"Ge X.","year":"2016","unstructured":"X. Ge , N. Talele , M. Payer , and T. Jaeger . 2016 . Fine-Grained Control-Flow Integrity for Kernel Software. In 1st IEEE European Symp. on Security and Privacy (EuroS&P) . Saarbr\u00fccken, Germany. https:\/\/doi.org\/10.1109\/EuroSP. 2016 .24 X. Ge, N. Talele, M. Payer, and T. Jaeger. 2016. Fine-Grained Control-Flow Integrity for Kernel Software. In 1st IEEE European Symp. on Security and Privacy (EuroS&P). Saarbr\u00fccken, Germany. https:\/\/doi.org\/10.1109\/EuroSP.2016.24"},{"key":"e_1_3_2_1_32_1","volume-title":"IEEE Conf. on Communications and Network Security (CNS)","author":"Gionta J.","year":"2016","unstructured":"J. Gionta , W. Enck , and P. Larsen . 2016. Preventing Kernel Code-reuse Attacks through Disclosure Resistant Code Diversification . In IEEE Conf. on Communications and Network Security (CNS) . Philadelphia, PA, 189\u2013197. https:\/\/doi.org\/10.1109\/CNS. 2016 .7860485 J. Gionta, W. Enck, and P. Larsen. 2016. Preventing Kernel Code-reuse Attacks through Disclosure Resistant Code Diversification. In IEEE Conf. on Communications and Network Security (CNS). Philadelphia, PA, 189\u2013197. https:\/\/doi.org\/10.1109\/CNS.2016.7860485"},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1145\/2699026.2699107"},{"key":"e_1_3_2_1_34_1","volume-title":"Out of Control: Overcoming Control-Flow Integrity. In 35th IEEE Symp. on Security and Privacy (S&P)","author":"G\u00f6ktas Enes","year":"2014","unstructured":"Enes G\u00f6ktas , Elias Athanasopoulos , Herbert Bos , and Georgios Portokalidis . 2014 . Out of Control: Overcoming Control-Flow Integrity. In 35th IEEE Symp. on Security and Privacy (S&P) . San Jose, CA. https:\/\/doi.org\/10.1109\/SP. 2014.43 Enes G\u00f6ktas, Elias Athanasopoulos, Herbert Bos, and Georgios Portokalidis. 2014. Out of Control: Overcoming Control-Flow Integrity. In 35th IEEE Symp. on Security and Privacy (S&P). San Jose, CA. https:\/\/doi.org\/10.1109\/SP.2014.43"},{"key":"e_1_3_2_1_35_1","volume-title":"25th USENIX Security Symp. (SEC)","author":"G\u00f6kta\u015f Enes","year":"2016","unstructured":"Enes G\u00f6kta\u015f , Robert Gawlik , Benjamin Kollenda , Elias Athanasopoulos , Georgios Portokalidis , Cristiano Giuffrida , and Herbert Bos . 2016 . Undermining Information Hiding (and What to Do about It) . In 25th USENIX Security Symp. (SEC) . Austin, TX, 105\u2013119. https:\/\/www.usenix.org\/Conf.\/usenixsecurity16\/technical-sessions\/presentation\/goktas Enes G\u00f6kta\u015f, Robert Gawlik, Benjamin Kollenda, Elias Athanasopoulos, Georgios Portokalidis, Cristiano Giuffrida, and Herbert Bos. 2016. Undermining Information Hiding (and What to Do about It). In 25th USENIX Security Symp. (SEC). Austin, TX, 105\u2013119. https:\/\/www.usenix.org\/Conf.\/usenixsecurity16\/technical-sessions\/presentation\/goktas"},{"key":"e_1_3_2_1_36_1","volume-title":"Harmonizing Performance and Isolation in Microkernels with Efficient Intra-kernel Isolation and Communication. In 31st USENIX Annual Technical Conf. (ATC). Virtual Conf., 401\u2013417","author":"Gu Jinyu","year":"2020","unstructured":"Jinyu Gu , Xinyue Wu , Wentai Li , Nian Liu , Zeyu Mi , Yubin Xia , and Haibo Chen . 2020 . Harmonizing Performance and Isolation in Microkernels with Efficient Intra-kernel Isolation and Communication. In 31st USENIX Annual Technical Conf. (ATC). Virtual Conf., 401\u2013417 . https:\/\/www.usenix.org\/Conf.\/atc20\/presentation\/gu Jinyu Gu, Xinyue Wu, Wentai Li, Nian Liu, Zeyu Mi, Yubin Xia, and Haibo Chen. 2020. Harmonizing Performance and Isolation in Microkernels with Efficient Intra-kernel Isolation and Communication. In 31st USENIX Annual Technical Conf. (ATC). Virtual Conf., 401\u2013417. https:\/\/www.usenix.org\/Conf.\/atc20\/presentation\/gu"},{"key":"e_1_3_2_1_37_1","volume-title":"Position-Independent Code Reuse: On the Effectiveness of ASLR in the Absence of Information Disclosure. In 3rd IEEE European Symp. on Security and Privacy (Euro S&P)","author":"G\u00f6ktas E.","year":"2018","unstructured":"E. G\u00f6ktas , B. Kollenda , P. Koppe , E. Bosman , G. Portokalidis , T. Holz , H. Bos , and C. Giuffrida . 2018 . Position-Independent Code Reuse: On the Effectiveness of ASLR in the Absence of Information Disclosure. In 3rd IEEE European Symp. on Security and Privacy (Euro S&P) . London, UK, 227\u2013242. https:\/\/doi.org\/10.1109\/EuroSP. 2018 .00024 E. G\u00f6ktas, B. Kollenda, P. Koppe, E. Bosman, G. Portokalidis, T. Holz, H. Bos, and C. Giuffrida. 2018. Position-Independent Code Reuse: On the Effectiveness of ASLR in the Absence of Information Disclosure. In 3rd IEEE European Symp. on Security and Privacy (Euro S&P). London, UK, 227\u2013242. https:\/\/doi.org\/10.1109\/EuroSP.2018.00024"},{"key":"e_1_3_2_1_38_1","volume-title":"System Calls for Memory Protection Keys. https:\/\/lwn.net\/Articles\/695972\/ [Online","author":"Hansen Dave","year":"2019","unstructured":"Dave Hansen . [n.d.]. System Calls for Memory Protection Keys. https:\/\/lwn.net\/Articles\/695972\/ [Online ; accessed 11- March - 2019 ]. Dave Hansen. [n.d.]. System Calls for Memory Protection Keys. https:\/\/lwn.net\/Articles\/695972\/ [Online; accessed 11-March-2019]."},{"key":"e_1_3_2_1_39_1","volume-title":"https:\/\/lkml.org\/lkml\/2017\/12\/18\/1523 [Online","author":"Hansen Dave","year":"2020","unstructured":"Dave Hansen . 2017. KPTI Patch . https:\/\/lkml.org\/lkml\/2017\/12\/18\/1523 [Online ; accessed 03- December - 2020 ]. Dave Hansen. 2017. KPTI Patch. https:\/\/lkml.org\/lkml\/2017\/12\/18\/1523 [Online; accessed 03-December-2020]."},{"key":"e_1_3_2_1_40_1","volume-title":"Hodor: Intra-Process Isolation for High-Throughput Data Plane Libraries. In 30th USENIX Annual Technical Conf. (ATC)","author":"Hedayati Mohammad","year":"2019","unstructured":"Mohammad Hedayati , Spyridoula Gravani , Ethan Johnson , John Criswell , Michael\u00a0 L. Scott , Kai Shen , and Mike Marty . 2019 . Hodor: Intra-Process Isolation for High-Throughput Data Plane Libraries. In 30th USENIX Annual Technical Conf. (ATC) . Renton, WA, 489\u2013504. https:\/\/www.usenix.org\/Conf.\/atc19\/presentation\/hedayati-hodor Mohammad Hedayati, Spyridoula Gravani, Ethan Johnson, John Criswell, Michael\u00a0L. Scott, Kai Shen, and Mike Marty. 2019. Hodor: Intra-Process Isolation for High-Throughput Data Plane Libraries. In 30th USENIX Annual Technical Conf. (ATC). Renton, WA, 489\u2013504. https:\/\/www.usenix.org\/Conf.\/atc19\/presentation\/hedayati-hodor"},{"key":"e_1_3_2_1_41_1","volume-title":"SPEC CPU2006 Benchmark Descriptions. ACM SIGARCH Computer Architecture News 34","author":"Henning L.","year":"2006","unstructured":"John\u00a0 L. Henning . 2006 . SPEC CPU2006 Benchmark Descriptions. ACM SIGARCH Computer Architecture News 34 , 4 (September 2006). https:\/\/doi.org\/10.1145\/1186736.1186737 John\u00a0L. Henning. 2006. SPEC CPU2006 Benchmark Descriptions. ACM SIGARCH Computer Architecture News 34, 4 (September 2006). https:\/\/doi.org\/10.1145\/1186736.1186737"},{"key":"e_1_3_2_1_42_1","volume-title":"IBM System\/360 Principles of Operation","author":"IBM Corp.","unstructured":"IBM Corp. 1964. IBM System\/360 Principles of Operation . IBM Press . IBM Corp.1964. IBM System\/360 Principles of Operation. IBM Press."},{"key":"e_1_3_2_1_43_1","unstructured":"Qualcomm\u00a0Technologies Inc.2017. Pointer Authentication on ARMv8.3: Design and Analysis of the New Software Security Instructions. https:\/\/www.qualcomm.com\/media\/documents\/files\/whitepaper-pointer-authentication-on-armv8-3.pdf [Online; accessed 15-November-2019].  Qualcomm\u00a0Technologies Inc.2017. Pointer Authentication on ARMv8.3: Design and Analysis of the New Software Security Instructions. https:\/\/www.qualcomm.com\/media\/documents\/files\/whitepaper-pointer-authentication-on-armv8-3.pdf [Online; accessed 15-November-2019]."},{"key":"e_1_3_2_1_44_1","volume-title":"Introduction to Intel\u00ae Memory Protection Extensions. https:\/\/software.intel.com\/content\/www\/us\/en\/develop\/articles\/introduction-to-intel-memory-protection-extensions.html[Online","author":"Intel Corp.","year":"2020","unstructured":"Intel Corp. 2013. Introduction to Intel\u00ae Memory Protection Extensions. https:\/\/software.intel.com\/content\/www\/us\/en\/develop\/articles\/introduction-to-intel-memory-protection-extensions.html[Online ; accessed 10- November - 2020 ]. Intel Corp.2013. Introduction to Intel\u00ae Memory Protection Extensions. https:\/\/software.intel.com\/content\/www\/us\/en\/develop\/articles\/introduction-to-intel-memory-protection-extensions.html[Online; accessed 10-November-2020]."},{"key":"e_1_3_2_1_45_1","unstructured":"Intel Corp.2018. Intel Security Features and Technologies Related to Transient Execution Attacks. https:\/\/software.intel.com\/content\/www\/us\/en\/develop\/articles\/software-security-guidance\/best-practices\/related-intel-security-features-technologies.html[Online; accessed 17-June-2021].  Intel Corp.2018. Intel Security Features and Technologies Related to Transient Execution Attacks. https:\/\/software.intel.com\/content\/www\/us\/en\/develop\/articles\/software-security-guidance\/best-practices\/related-intel-security-features-technologies.html[Online; accessed 17-June-2021]."},{"key":"e_1_3_2_1_46_1","unstructured":"Intel Corp.2021. Intel 64 and IA-32 Architectures Software Developer\u2019s Manual. 325384-074US.  Intel Corp.2021. Intel 64 and IA-32 Architectures Software Developer\u2019s Manual. 325384-074US."},{"key":"e_1_3_2_1_47_1","volume-title":"23rd USENIX Conf. on Security Symp.(SEC\u201914)","author":"Kemerlis P.","year":"2014","unstructured":"Vasileios\u00a0 P. Kemerlis , Michalis Polychronakis , and Angelos\u00a0 D. Keromytis . 2014 . Ret2Dir: Rethinking Kernel Isolation . In 23rd USENIX Conf. on Security Symp.(SEC\u201914) . USENIX Association, San Diego, CA. http:\/\/dl.acm.org\/citation.cfm?id=2671225.2671286 Vasileios\u00a0P. Kemerlis, Michalis Polychronakis, and Angelos\u00a0D. Keromytis. 2014. Ret2Dir: Rethinking Kernel Isolation. In 23rd USENIX Conf. on Security Symp.(SEC\u201914). USENIX Association, San Diego, CA. http:\/\/dl.acm.org\/citation.cfm?id=2671225.2671286"},{"key":"e_1_3_2_1_48_1","volume-title":"21st USENIX Security Symp. (SEC)","author":"Kemerlis P.","year":"2012","unstructured":"Vasileios\u00a0 P. Kemerlis , Georgios Portokalidis , and Angelos\u00a0 D. Keromytis . 2012 . kGuard: Lightweight Kernel Protection Against Return-to-user Attacks . In 21st USENIX Security Symp. (SEC) . Bellevue, WA. Vasileios\u00a0P. Kemerlis, Georgios Portokalidis, and Angelos\u00a0D. Keromytis. 2012. kGuard: Lightweight Kernel Protection Against Return-to-user Attacks. In 21st USENIX Security Symp. (SEC). Bellevue, WA."},{"key":"e_1_3_2_1_49_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2006.9"},{"key":"e_1_3_2_1_50_1","doi-asserted-by":"publisher","DOI":"10.1145\/3404397.3404443"},{"key":"e_1_3_2_1_51_1","doi-asserted-by":"publisher","DOI":"10.1145\/3064176.3064217"},{"key":"e_1_3_2_1_52_1","volume-title":"Code-Pointer Integrity. In 11th USENIX Symp. on Operating Systems Design and Implementation (OSDI)","author":"Kuznetsov Volodymyr","year":"2014","unstructured":"Volodymyr Kuznetsov , Laszlo Szekeres , Mathias Payer , George Candea , R. Sekar , and Dawn Song . 2014 . Code-Pointer Integrity. In 11th USENIX Symp. on Operating Systems Design and Implementation (OSDI) . Broomfield, CO, 147\u2013163. https:\/\/www.usenix.org\/Conf.\/osdi14\/technical-sessions\/presentation\/kuznetsov Volodymyr Kuznetsov, Laszlo Szekeres, Mathias Payer, George Candea, R. Sekar, and Dawn Song. 2014. Code-Pointer Integrity. In 11th USENIX Symp. on Operating Systems Design and Implementation (OSDI). Broomfield, CO, 147\u2013163. https:\/\/www.usenix.org\/Conf.\/osdi14\/technical-sessions\/presentation\/kuznetsov"},{"key":"e_1_3_2_1_53_1","volume-title":"28th USENIX Security Symp. (SEC)","author":"Kwon Donghyun","year":"2019","unstructured":"Donghyun Kwon , Jangseop Shin , Giyeol Kim , Byoungyoung Lee , Yeongpil Cho , and Yunheung Paek . 2019 . uXOM: Efficient eXecute-Only Memory on ARM Cortex-M . In 28th USENIX Security Symp. (SEC) . Santa Clara, CA, 231\u2013247. https:\/\/www.usenix.org\/Conf.\/usenixsecurity19\/presentation\/kwon Donghyun Kwon, Jangseop Shin, Giyeol Kim, Byoungyoung Lee, Yeongpil Cho, and Yunheung Paek. 2019. uXOM: Efficient eXecute-Only Memory on ARM Cortex-M. In 28th USENIX Security Symp. (SEC). Santa Clara, CA, 231\u2013247. https:\/\/www.usenix.org\/Conf.\/usenixsecurity19\/presentation\/kwon"},{"key":"e_1_3_2_1_54_1","volume-title":"Exploring Rust for Unikernel Development. In 10th Workshop on Programming Languages and Operating Systems (PLOS). Huntsville, ON, Canada. https:\/\/doi.org\/10","author":"Lankes Stefan","year":"2019","unstructured":"Stefan Lankes , Jens Breitbart , and Simon Pickartz . 2019 . Exploring Rust for Unikernel Development. In 10th Workshop on Programming Languages and Operating Systems (PLOS). Huntsville, ON, Canada. https:\/\/doi.org\/10 .1145\/3365137.3365395 Stefan Lankes, Jens Breitbart, and Simon Pickartz. 2019. Exploring Rust for Unikernel Development. In 10th Workshop on Programming Languages and Operating Systems (PLOS). Huntsville, ON, Canada. https:\/\/doi.org\/10.1145\/3365137.3365395"},{"key":"e_1_3_2_1_55_1","volume-title":"LLVM: A Compilation Framework for Lifelong Program Analysis & Transformation. In Intl. Symp. on Code Generation and Optimization: Feedback-directed and Runtime Optimization (CGO)","author":"Lattner Chris","year":"2004","unstructured":"Chris Lattner and Vikram Adve . 2004 . LLVM: A Compilation Framework for Lifelong Program Analysis & Transformation. In Intl. Symp. on Code Generation and Optimization: Feedback-directed and Runtime Optimization (CGO) . Palo Alto, CA. http:\/\/dl.acm.org\/citation.cfm?id=977395.977673 Chris Lattner and Vikram Adve. 2004. LLVM: A Compilation Framework for Lifelong Program Analysis & Transformation. In Intl. Symp. on Code Generation and Optimization: Feedback-directed and Runtime Optimization (CGO). Palo Alto, CA. http:\/\/dl.acm.org\/citation.cfm?id=977395.977673"},{"key":"e_1_3_2_1_56_1","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2018.2797932"},{"key":"e_1_3_2_1_57_1","volume-title":"PAC It Up: Towards Pointer Integrity Using ARM Pointer Authentication. In 28th USENIX Security Symp. (SEC)","author":"Liljestrand Hans","unstructured":"Hans Liljestrand , Thomas Nyman , Kui Wang , Carlos\u00a0Chinea Perez , Jan-Erik Ekberg , and N. Asokan . 2019 . PAC It Up: Towards Pointer Integrity Using ARM Pointer Authentication. In 28th USENIX Security Symp. (SEC) . Santa Clara, CA. http:\/\/dl.acm.org\/citation.cfm?id=3361338.3361352 Hans Liljestrand, Thomas Nyman, Kui Wang, Carlos\u00a0Chinea Perez, Jan-Erik Ekberg, and N. Asokan. 2019. PAC It Up: Towards Pointer Integrity Using ARM Pointer Authentication. In 28th USENIX Security Symp. (SEC). Santa Clara, CA. http:\/\/dl.acm.org\/citation.cfm?id=3361338.3361352"},{"key":"e_1_3_2_1_58_1","volume-title":"process_vm_readv(2). https:\/\/man7.org\/linux\/man-pages\/man2\/process_vm_readv.2.html [Online","author":"Pages Linux Manual","year":"2021","unstructured":"Linux Manual Pages . [n.d.]. process_vm_readv(2). https:\/\/man7.org\/linux\/man-pages\/man2\/process_vm_readv.2.html [Online ; accessed 23- June - 2021 ]. Linux Manual Pages. [n.d.]. process_vm_readv(2). https:\/\/man7.org\/linux\/man-pages\/man2\/process_vm_readv.2.html [Online; accessed 23-June-2021]."},{"key":"e_1_3_2_1_59_1","unstructured":"LinuxBenchmarking. [n.d.]. Daily Mainline Linux Kernel Tests. http:\/\/www.linuxbenchmarking.com\/?daily-mainline-linux-kernel-tests[Online; accessed 03-December-2020].  LinuxBenchmarking. [n.d.]. Daily Mainline Linux Kernel Tests. http:\/\/www.linuxbenchmarking.com\/?daily-mainline-linux-kernel-tests[Online; accessed 03-December-2020]."},{"key":"e_1_3_2_1_60_1","volume-title":"27th USENIX Security Symp. (SEC)","author":"Lipp Moritz","year":"2018","unstructured":"Moritz Lipp , Michael Schwarz , Daniel Gruss , Thomas Prescher , Werner Haas , Anders Fogh , Jann Horn , Stefan Mangard , Paul Kocher , Daniel Genkin , Yuval Yarom , and Mike Hamburg . 2018 . Meltdown: Reading Kernel Memory from User Space . In 27th USENIX Security Symp. (SEC) . Baltimore, MD. https:\/\/www.usenix.org\/Conf.\/usenixsecurity18\/presentation\/lipp Moritz Lipp, Michael Schwarz, Daniel Gruss, Thomas Prescher, Werner Haas, Anders Fogh, Jann Horn, Stefan Mangard, Paul Kocher, Daniel Genkin, Yuval Yarom, and Mike Hamburg. 2018. Meltdown: Reading Kernel Memory from User Space. In 27th USENIX Security Symp. (SEC). Baltimore, MD. https:\/\/www.usenix.org\/Conf.\/usenixsecurity18\/presentation\/lipp"},{"key":"e_1_3_2_1_61_1","volume-title":"Thwarting Memory Disclosure with Efficient Hypervisor-enforced Intra-domain Isolation. In 22nd ACM SIGSAC Conf. on Computer and Communications Security (CCS)","author":"Liu Yutao","year":"2015","unstructured":"Yutao Liu , Tianyu Zhou , Kexin Chen , Haibo Chen , and Yubin Xia . 2015 . Thwarting Memory Disclosure with Efficient Hypervisor-enforced Intra-domain Isolation. In 22nd ACM SIGSAC Conf. on Computer and Communications Security (CCS) . Denver, CO. Yutao Liu, Tianyu Zhou, Kexin Chen, Haibo Chen, and Yubin Xia. 2015. Thwarting Memory Disclosure with Efficient Hypervisor-enforced Intra-domain Isolation. In 22nd ACM SIGSAC Conf. on Computer and Communications Security (CCS). Denver, CO."},{"key":"e_1_3_2_1_63_1","volume-title":"7th USENIX Annual Technical Conf. (ATC)","author":"McVoy Larry","year":"1996","unstructured":"Larry McVoy and Carl Staelin . 1996 . lmbench: Portable Tools for Performance Analysis . In 7th USENIX Annual Technical Conf. (ATC) . San Diego, CA. http:\/\/dl.acm.org\/citation.cfm?id=1268299.1268322 Larry McVoy and Carl Staelin. 1996. lmbench: Portable Tools for Performance Analysis. In 7th USENIX Annual Technical Conf. (ATC). San Diego, CA. http:\/\/dl.acm.org\/citation.cfm?id=1268299.1268322"},{"key":"e_1_3_2_1_64_1","volume-title":"Phoronix Test Suite. https:\/\/www.phoronix-test-suite.com [Online","author":"Media Phoronix","year":"2019","unstructured":"Phoronix Media . [n.d.]. Phoronix Test Suite. https:\/\/www.phoronix-test-suite.com [Online ; accessed 11- March - 2019 ]. Phoronix Media. [n.d.]. Phoronix Test Suite. https:\/\/www.phoronix-test-suite.com [Online; accessed 11-March-2019]."},{"key":"e_1_3_2_1_65_1","doi-asserted-by":"publisher","DOI":"10.1145\/3302424.3303946"},{"key":"e_1_3_2_1_66_1","volume-title":"DROP THE ROP: Fine Grained Control-Flow Integrity for The Linux Kernel. In Black Hat Asia.","author":"Moreira Jo\u00e3o","year":"2017","unstructured":"Jo\u00e3o Moreira , Sandro Rigo , Michalis Polychronakis , and Vasileios\u00a0 P. Kemerlis . 2017 . DROP THE ROP: Fine Grained Control-Flow Integrity for The Linux Kernel. In Black Hat Asia. Jo\u00e3o Moreira, Sandro Rigo, Michalis Polychronakis, and Vasileios\u00a0P. Kemerlis. 2017. DROP THE ROP: Fine Grained Control-Flow Integrity for The Linux Kernel. In Black Hat Asia."},{"key":"e_1_3_2_1_67_1","volume-title":"Lightweight Kernel Isolation with Virtualization and VM Functions. In 16th ACM SIGPLAN\/SIGOPS Intl. Conf. on Virtual Execution Environments (VEE)","author":"Narayanan Vikram","year":"2020","unstructured":"Vikram Narayanan , Yongzhe Huang , Gang Tan , Trent Jaeger , and Anton Burtsev . 2020 . Lightweight Kernel Isolation with Virtualization and VM Functions. In 16th ACM SIGPLAN\/SIGOPS Intl. Conf. on Virtual Execution Environments (VEE) . Lausanne, Switzerland, 157\u2013171. https:\/\/doi.org\/10.1145\/3381052.3381328 Vikram Narayanan, Yongzhe Huang, Gang Tan, Trent Jaeger, and Anton Burtsev. 2020. Lightweight Kernel Isolation with Virtualization and VM Functions. In 16th ACM SIGPLAN\/SIGOPS Intl. Conf. on Virtual Execution Environments (VEE). Lausanne, Switzerland, 157\u2013171. https:\/\/doi.org\/10.1145\/3381052.3381328"},{"key":"e_1_3_2_1_68_1","doi-asserted-by":"publisher","DOI":"10.1145\/1920261.1920269"},{"key":"e_1_3_2_1_69_1","volume-title":"Smashing the Stack for Fun and Profit. Phrack 7 (November","author":"One Aleph","year":"1996","unstructured":"Aleph One . 1996. Smashing the Stack for Fun and Profit. Phrack 7 (November 1996 ). Issue 49. http:\/\/www.phrack.org\/issues\/49\/14.html [Online; accessed 03-December-2020]. Aleph One. 1996. Smashing the Stack for Fun and Profit. Phrack 7 (November 1996). Issue 49. http:\/\/www.phrack.org\/issues\/49\/14.html [Online; accessed 03-December-2020]."},{"key":"e_1_3_2_1_70_1","volume-title":"Smashing the Gadgets: Hindering Return-Oriented Programming Using In-place Code Randomization. In 33rd IEEE Symp. on Security and Privacy (S&P)","author":"Pappas Vasilis","year":"2012","unstructured":"Vasilis Pappas , Michalis Polychronakis , and Angelos\u00a0 D. Keromytis . 2012 . Smashing the Gadgets: Hindering Return-Oriented Programming Using In-place Code Randomization. In 33rd IEEE Symp. on Security and Privacy (S&P) . San Francisco, CA. https:\/\/doi.org\/10.1109\/SP. 2012.41 Vasilis Pappas, Michalis Polychronakis, and Angelos\u00a0D. Keromytis. 2012. Smashing the Gadgets: Hindering Return-Oriented Programming Using In-place Code Randomization. In 33rd IEEE Symp. on Security and Privacy (S&P). San Francisco, CA. https:\/\/doi.org\/10.1109\/SP.2012.41"},{"key":"e_1_3_2_1_71_1","article-title":"Kernel Protection Against Just-In-Time Code Reuse","volume":"22","author":"Pomonis Marios","year":"2019","unstructured":"Marios Pomonis , Theofilos Petsios , Angelos\u00a0 D. Keromytis , Michalis Polychronakis , and Vasileios\u00a0 P. Kemerlis . 2019 . Kernel Protection Against Just-In-Time Code Reuse . ACM Trans. on Privacy and Security (TOPS) 22 , 1, Article 5 (January 2019). https:\/\/doi.org\/10.1145\/3277592 Marios Pomonis, Theofilos Petsios, Angelos\u00a0D. Keromytis, Michalis Polychronakis, and Vasileios\u00a0P. Kemerlis. 2019. Kernel Protection Against Just-In-Time Code Reuse. ACM Trans. on Privacy and Security (TOPS) 22, 1, Article 5 (January 2019). https:\/\/doi.org\/10.1145\/3277592","journal-title":"ACM Trans. on Privacy and Security (TOPS)"},{"key":"e_1_3_2_1_72_1","volume-title":"41st IEEE Symp. on Security and Privacy (S&P). https:\/\/doi.org\/10","author":"Proskurin S.","year":"2020","unstructured":"S. Proskurin , M. Momeu , S. Ghavamnia , V.\u00a0 P. Kemerlis , and M. Polychronakis . 2020. xMP: Selective Memory Protection for Kernel and User Space . In 41st IEEE Symp. on Security and Privacy (S&P). https:\/\/doi.org\/10 .1109\/SP40000. 2020 .00041 S. Proskurin, M. Momeu, S. Ghavamnia, V.\u00a0P. Kemerlis, and M. Polychronakis. 2020. xMP: Selective Memory Protection for Kernel and User Space. In 41st IEEE Symp. on Security and Privacy (S&P). https:\/\/doi.org\/10.1109\/SP40000.2020.00041"},{"key":"e_1_3_2_1_73_1","volume-title":"Understanding Hardware-enforced Stack Protection. https:\/\/techcommunity.microsoft.com\/t5\/windows-kernel-internals\/understanding-hardware-enforced-stack-protection\/ba-p\/1247815[Online","author":"Pulapaka Hari","year":"2021","unstructured":"Hari Pulapaka . 2020. Understanding Hardware-enforced Stack Protection. https:\/\/techcommunity.microsoft.com\/t5\/windows-kernel-internals\/understanding-hardware-enforced-stack-protection\/ba-p\/1247815[Online ; accessed 16- June - 2021 ]. Hari Pulapaka. 2020. Understanding Hardware-enforced Stack Protection. https:\/\/techcommunity.microsoft.com\/t5\/windows-kernel-internals\/understanding-hardware-enforced-stack-protection\/ba-p\/1247815[Online; accessed 16-June-2021]."},{"key":"e_1_3_2_1_74_1","article-title":"Return-Oriented Programming: Systems, Languages, and Applications","volume":"15","author":"Roemer Ryan","year":"2012","unstructured":"Ryan Roemer , Erik Buchanan , Hovav Shacham , and Stefan Savage . 2012 . Return-Oriented Programming: Systems, Languages, and Applications . ACM Trans. on Information Systems Security (TISSEC) 15 , 1, Article 2 (March 2012). Ryan Roemer, Erik Buchanan, Hovav Shacham, and Stefan Savage. 2012. Return-Oriented Programming: Systems, Languages, and Applications. ACM Trans. on Information Systems Security (TISSEC) 15, 1, Article 2 (March 2012).","journal-title":"ACM Trans. on Information Systems Security (TISSEC)"},{"key":"e_1_3_2_1_75_1","volume-title":"Address Oblivious Code Reuse: On the Effectiveness of Leakage Resilient Diversity. In 24th Annual Network and Distributed System Security Symp. (NDSS)","author":"Rudd Robert","year":"2017","unstructured":"Robert Rudd , Richard\u00a0 W. Skowyra , David Bigelow , Veer Dedhia , Thomas Hobson , Stephen Crane , Christopher Liebchen , Per Larsen , Lucas Davi , Michael Franz , Ahmad-Reza Sadeghi , and Hamed Okhravi . 2017 . Address Oblivious Code Reuse: On the Effectiveness of Leakage Resilient Diversity. In 24th Annual Network and Distributed System Security Symp. (NDSS) . San Diego, CA. Robert Rudd, Richard\u00a0W. Skowyra, David Bigelow, Veer Dedhia, Thomas Hobson, Stephen Crane, Christopher Liebchen, Per Larsen, Lucas Davi, Michael Franz, Ahmad-Reza Sadeghi, and Hamed Okhravi. 2017. Address Oblivious Code Reuse: On the Effectiveness of Leakage Resilient Diversity. In 24th Annual Network and Distributed System Security Symp. (NDSS). San Diego, CA."},{"key":"e_1_3_2_1_76_1","volume-title":"19th USENIX Security Symp. (SEC)","author":"Sehr David","year":"2010","unstructured":"David Sehr , Robert Muth , Cliff Biffle , Victor Khimenko , Egor Pasko , Karl Schimpf , Bennet Yee , and Brad Chen . 2010 . Adapting Software Fault Isolation to Contemporary CPU Architectures . In 19th USENIX Security Symp. (SEC) . Washington, DC. http:\/\/dl.acm.org\/citation.cfm?id= 1929820.1929822 David Sehr, Robert Muth, Cliff Biffle, Victor Khimenko, Egor Pasko, Karl Schimpf, Bennet Yee, and Brad Chen. 2010. Adapting Software Fault Isolation to Contemporary CPU Architectures. In 19th USENIX Security Symp. (SEC). Washington, DC. http:\/\/dl.acm.org\/citation.cfm?id=1929820.1929822"},{"key":"e_1_3_2_1_77_1","doi-asserted-by":"publisher","DOI":"10.1145\/1294261.1294294"},{"key":"e_1_3_2_1_78_1","volume-title":"Just-In-Time Code Reuse: On the Effectiveness of Fine-Grained Address Space Layout Randomization. In 34th IEEE Symp. on Security and Privacy (S&P)","author":"Snow Z.","year":"2013","unstructured":"Kevin\u00a0 Z. Snow , Fabian Monrose , Lucas Davi , Alexandra Dmitrienko , Christopher Liebchen , and Ahmad-Reza Sadeghi . 2013 . Just-In-Time Code Reuse: On the Effectiveness of Fine-Grained Address Space Layout Randomization. In 34th IEEE Symp. on Security and Privacy (S&P) . San Francisco, CA. https:\/\/doi.org\/10.1109\/SP. 2013.45 Kevin\u00a0Z. Snow, Fabian Monrose, Lucas Davi, Alexandra Dmitrienko, Christopher Liebchen, and Ahmad-Reza Sadeghi. 2013. Just-In-Time Code Reuse: On the Effectiveness of Fine-Grained Address Space Layout Randomization. In 34th IEEE Symp. on Security and Privacy (S&P). San Francisco, CA. https:\/\/doi.org\/10.1109\/SP.2013.45"},{"key":"e_1_3_2_1_79_1","volume-title":"Breaking the Memory Secrecy Assumption. In 2nd European Workshop on System Security (EUROSEC)","author":"Strackx Raoul","year":"2009","unstructured":"Raoul Strackx , Yves Younan , Pieter Philippaerts , Frank Piessens , Sven Lachmund , and Thomas Walter . 2009 . Breaking the Memory Secrecy Assumption. In 2nd European Workshop on System Security (EUROSEC) . Nuremburg, Germany. https:\/\/doi.org\/10.1145\/15 19144.1519145 Raoul Strackx, Yves Younan, Pieter Philippaerts, Frank Piessens, Sven Lachmund, and Thomas Walter. 2009. Breaking the Memory Secrecy Assumption. In 2nd European Workshop on System Security (EUROSEC). Nuremburg, Germany. https:\/\/doi.org\/10.1145\/1519144.1519145"},{"key":"e_1_3_2_1_80_1","volume-title":"Intra-Unikernel Isolation with Intel Memory Protection Keys. In 16th ACM SIGPLAN\/SIGOPS Intl. Conf. on Virtual Execution Environments (VEE)","author":"Sung Mincheol","year":"2020","unstructured":"Mincheol Sung , Pierre Olivier , Stefan Lankes , and Binoy Ravindran . 2020 . Intra-Unikernel Isolation with Intel Memory Protection Keys. In 16th ACM SIGPLAN\/SIGOPS Intl. Conf. on Virtual Execution Environments (VEE) . Lausanne, Switzerland, 143\u2013156. https:\/\/doi.org\/10.1145\/3381052.3381326 Mincheol Sung, Pierre Olivier, Stefan Lankes, and Binoy Ravindran. 2020. Intra-Unikernel Isolation with Intel Memory Protection Keys. In 16th ACM SIGPLAN\/SIGOPS Intl. Conf. on Virtual Execution Environments (VEE). Lausanne, Switzerland, 143\u2013156. https:\/\/doi.org\/10.1145\/3381052.3381326"},{"key":"e_1_3_2_1_81_1","volume-title":"https:\/\/pax.grsecurity.net\/docs\/noexec.txt [Online","author":"Team X","year":"2020","unstructured":"The\u00a0Pa X Team . [n.d.]. NOEXEC. https:\/\/pax.grsecurity.net\/docs\/noexec.txt [Online ; accessed 03- December - 2020 ]. The\u00a0PaX Team. [n.d.]. NOEXEC. https:\/\/pax.grsecurity.net\/docs\/noexec.txt [Online; accessed 03-December-2020]."},{"key":"e_1_3_2_1_82_1","volume-title":"RAP: RIP ROP. https:\/\/pax.grsecurity.net\/docs\/PaXTeam-H2HC15-RAP-RIP-ROP.pdf[Online","author":"Team X","year":"2015","unstructured":"The\u00a0Pa X Team . 2015 . RAP: RIP ROP. https:\/\/pax.grsecurity.net\/docs\/PaXTeam-H2HC15-RAP-RIP-ROP.pdf[Online ; accessed 03-December-2020]. The\u00a0PaX Team. 2015. RAP: RIP ROP. https:\/\/pax.grsecurity.net\/docs\/PaXTeam-H2HC15-RAP-RIP-ROP.pdf[Online; accessed 03-December-2020]."},{"key":"e_1_3_2_1_83_1","volume-title":"28th USENIX Security Symp. (SEC)","author":"Vahldiek-Oberwagner Anjo","year":"2019","unstructured":"Anjo Vahldiek-Oberwagner , Eslam Elnikety , Nuno\u00a0 O. Duarte , Michael Sammler , Peter Druschel , and Deepak Garg . 2019 . ERIM: Secure, Efficient In-process Isolation with Protection Keys (MPK) . In 28th USENIX Security Symp. (SEC) . Santa Clara, CA, 1221\u20131238. https:\/\/www.usenix.org\/Conf.\/usenixsecurity19\/presentation\/vahldiek-oberwagner Anjo Vahldiek-Oberwagner, Eslam Elnikety, Nuno\u00a0O. Duarte, Michael Sammler, Peter Druschel, and Deepak Garg. 2019. ERIM: Secure, Efficient In-process Isolation with Protection Keys (MPK). In 28th USENIX Security Symp. (SEC). Santa Clara, CA, 1221\u20131238. https:\/\/www.usenix.org\/Conf.\/usenixsecurity19\/presentation\/vahldiek-oberwagner"},{"key":"e_1_3_2_1_84_1","volume-title":"Stack Shield: A \u2018Stack-smashing","year":"2000","unstructured":"Vendicator. 2000 . Stack Shield: A \u2018Stack-smashing \u2019 Technique Protection Tool for Linux . http:\/\/www.angelfire.com\/sk\/stackshield\/info.html [Online; accessed 11-March-2019]. Vendicator. 2000. Stack Shield: A \u2018Stack-smashing\u2019 Technique Protection Tool for Linux. http:\/\/www.angelfire.com\/sk\/stackshield\/info.html [Online; accessed 11-March-2019]."},{"key":"e_1_3_2_1_85_1","volume-title":"Stackguard: Simple Stack Smash Protection for GCC. In GCC Developers Summit. 243\u2013255.","author":"Wagle Perry","year":"2003","unstructured":"Perry Wagle and Crispin Cowan . 2003 . Stackguard: Simple Stack Smash Protection for GCC. In GCC Developers Summit. 243\u2013255. Perry Wagle and Crispin Cowan. 2003. Stackguard: Simple Stack Smash Protection for GCC. In GCC Developers Summit. 243\u2013255."},{"key":"e_1_3_2_1_86_1","volume-title":"Efficient Software-Based Fault Isolation. In 14th ACM SIGOPS Symp. on Operating Systems Principles (SOSP)","author":"Wahbe Robert","year":"1993","unstructured":"Robert Wahbe , Steven Lucco , Thomas\u00a0 E. Anderson , and Susan\u00a0 L. Graham . 1993 . Efficient Software-Based Fault Isolation. In 14th ACM SIGOPS Symp. on Operating Systems Principles (SOSP) . Asheville, NC. https:\/\/doi.org\/10.1145\/168619.168635 Robert Wahbe, Steven Lucco, Thomas\u00a0E. Anderson, and Susan\u00a0L. Graham. 1993. Efficient Software-Based Fault Isolation. In 14th ACM SIGOPS Symp. on Operating Systems Principles (SOSP). Asheville, NC. https:\/\/doi.org\/10.1145\/168619.168635"},{"key":"e_1_3_2_1_87_1","volume-title":"Secure and Efficient In-Process Monitor (and Library) Protection with Intel MPK. In 13th European Workshop on Systems Security (EuroSec)","author":"Wang Xiaoguang","year":"2020","unstructured":"Xiaoguang Wang , SengMing Yeoh , Pierre Olivier , and Binoy Ravindran . 2020 . Secure and Efficient In-Process Monitor (and Library) Protection with Intel MPK. In 13th European Workshop on Systems Security (EuroSec) . Heraklion, Greece, 7\u201312. https:\/\/doi.org\/10.1145\/3380786.3391398 Xiaoguang Wang, SengMing Yeoh, Pierre Olivier, and Binoy Ravindran. 2020. Secure and Efficient In-Process Monitor (and Library) Protection with Intel MPK. In 13th European Workshop on Systems Security (EuroSec). Heraklion, Greece, 7\u201312. https:\/\/doi.org\/10.1145\/3380786.3391398"},{"key":"e_1_3_2_1_88_1","volume-title":"SEIMI: Efficient and Secure SMAP-Enabled Intra-process Memory Isolation. In 41st IEEE Symp. on Security and Privacy (S&P)","author":"Wang Zhe","year":"2020","unstructured":"Zhe Wang , Chenggang Wu , Mengyao Xie , Yinqian Zhang , Kangjie Lu , Xiaofeng Zhang , Yuanming Lai , Yan Kang , and Min Yang . 2020 . SEIMI: Efficient and Secure SMAP-Enabled Intra-process Memory Isolation. In 41st IEEE Symp. on Security and Privacy (S&P) . San Francisco, CA. https:\/\/doi.org\/10.1109\/SP40000. 2020.00087 Zhe Wang, Chenggang Wu, Mengyao Xie, Yinqian Zhang, Kangjie Lu, Xiaofeng Zhang, Yuanming Lai, Yan Kang, and Min Yang. 2020. SEIMI: Efficient and Secure SMAP-Enabled Intra-process Memory Isolation. In 41st IEEE Symp. on Security and Privacy (S&P). San Francisco, CA. https:\/\/doi.org\/10.1109\/SP40000.2020.00087"},{"key":"e_1_3_2_1_89_1","doi-asserted-by":"publisher","DOI":"10.1145\/1629175.1629203"},{"key":"e_1_3_2_1_90_1","volume-title":"Examining Pointer Authentication on the iPhone XS. https:\/\/googleprojectzero.blogspot.com\/2019\/02\/examining-pointer-authentication-on.html [Online","author":"Azad Brandon","year":"2019","unstructured":"Brandon Azad ,\u00a0 Project Zero . 2019. Examining Pointer Authentication on the iPhone XS. https:\/\/googleprojectzero.blogspot.com\/2019\/02\/examining-pointer-authentication-on.html [Online ; accessed 15- November - 2019 ]. Brandon Azad,\u00a0Project Zero. 2019. Examining Pointer Authentication on the iPhone XS. https:\/\/googleprojectzero.blogspot.com\/2019\/02\/examining-pointer-authentication-on.html [Online; accessed 15-November-2019]."},{"key":"e_1_3_2_1_91_1","doi-asserted-by":"publisher","DOI":"10.1145\/3196494.3196531"}],"event":{"name":"RAID '21: 24th International Symposium on Research in Attacks, Intrusions and Defenses","location":"San Sebastian Spain","acronym":"RAID '21"},"container-title":["24th International Symposium on Research in Attacks, Intrusions and Defenses"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3471621.3471849","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3471621.3471849","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3471621.3471849","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T21:24:49Z","timestamp":1750195489000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3471621.3471849"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,10,6]]},"references-count":90,"alternative-id":["10.1145\/3471621.3471849","10.1145\/3471621"],"URL":"https:\/\/doi.org\/10.1145\/3471621.3471849","relation":{},"subject":[],"published":{"date-parts":[[2021,10,6]]}}}