Project Zero on Arm MTE
Google's Project Zero has spent some time studying the Arm memory tagging
extension (MTE), support for which was
merged into the 5.10 kernel, and posted
the results:
Despite its limitations, MTE is still by far the most promising path forward for improving C/C++ software security in 2023. The ability of MTE to detect memory corruption exploitation at the first dangerous access provides a significant improvement in diagnostic and potential security effectiveness.
There is a
separate section on weaknesses in the current kernel implementation of
MTE support.
Posted Aug 2, 2023 21:31 UTC (Wed)
by james (subscriber, #1325)
[Link]
Project Zero on Arm MTE
It's our understanding that Android is considering making changes...
implies Google expects to see MTE, and make use of it, in future Android devices. That could just be their own Tensor chips, but I'd expect they're talking to other system-on-chip manufacturers.