CHERI architecture may reduce the number of security updates released

CHERI architecture

Microsoft has currently finished studying the experimental architecture and thinks it may have potentially prevented over 2/3rd of the memory-safety liabilities corrected in 2019. The organization said that 70% of all security issues in the last decade had been related to memory-safety bugs. These issues occur when software accesses system memory more than its allocated memory addresses and size.

Read More: AIoT – When Internet of Things Converges with Artificial Intelligence

Microsoft representatives said that they are looking at the best alternative languages to C++. Rust was identified to be one of the best options. One more option was the Capability Hardware Enhanced RISC (reduced instruction set computer) Instructions or CHERI. Microsoft estimates that CHERI would have mitigated at least half of the liabilities handled by MSRC.

Source: zdnet