placeholder

Blog - Towards the next generation of XNU memory safety: kalloc_type - Apple Security Research

Improving software memory safety is a key security objective for engineering teams across the industry. Here we begin a journey into the XNU kernel at the core of iOS and explore the intricate work our engineering teams have done to harden the memory allocator and make our software much more difficu...

Click to view the original at security.apple.com

Hasnain says:

Apple starting their security research blog with a bang. This was super detailed, explaining various types of memory corruption bugs, the types of things they targeted, designing secure memory allocators, and adopting them at scale. I learnt a ton from this one.

“We hope that security researchers who are studying and developing defensive mitigations find this post to be a helpful case study of what it takes to transform a powerful idea like type isolation into a world-class implementation that is fast, memory-efficient, and practical enough to adopt at billion-device scale.”

Posted on 2022-10-28T03:51:19+0000