Speaker: Ittai Anati, Senior Principal Engineer, Intel Corporation
Host: Jakub Szefer, Dept. of Electrical Engineering, Yale University
Title: Intr to Intel’s Control-Flow Enforcement Technology
Abstract: Control flow subversion attacks (ROP/JOP/COP) are becoming the attack vector of choice. After considering multiple approaches to address these emerging threats we narrowed the proposal down to the Control-Flow Enforcement Technology (CET) specification for Intel Architecture which covers both application and supervisor spaces. CET comprises of two main components; a shadow stack that verifies the integrity of control flow changes through RET operations and a new ENDBRANCH instruction that verifies the integrity of control flow changes through indirect jumps and calls. The talk will describe the main concepts of CET.
Bio: Ittai Anati is a senior principal engineer at Intel Corporation. He works at the processor architecture group, focusing on security. In his latest role, Ittai was the lead architect for integrating Intel’s Software Guard Extension (Intel(tm) SGX) into the 6th generation Core CPU codenamed Skylake.