IUBIK: Isolating User Bytes in Commodity Operating System Kernels via Memory Tagging Extensions
Marius Momeu, Alexander J. Gaidis, Jasper von der Heidt, Vasileios P. Kemerlis
IEEE Symposium on Security and Privacy 2025 · Day 1 · Memory Safety
Despite decades of dedicated research and significant advancements in software engineering, memory safety vulnerabilities continue to pose a formidable threat to the integrity and security of commodity operating system kernels. These errors, often leading to critical exploits, remain a primary vector for attackers seeking to gain privileged access or disrupt system operations. The IUBIK project, presented by Marius Momeu from TU Munich, directly addresses this persistent challenge by introducing a novel approach that leverages cutting-edge hardware features to fundamentally alter how user-controlled data is handled within kernel memory.