Latest in Gear

Image credit: Andrei Stanescu via Getty Images

Intel's Tiger Lake processors will feature on-chip malware protections

Intel CET guards against COP/JOP/ROP hijacking attacks.
223 Shares
Share
Tweet
Share

Sponsored Links

May 3, 2018 Santa Clara / CA / USA - Intel sign located in front of the entrance to the offices and museum located in Silicon Valley, south San Francisco bay area
Andrei Stanescu via Getty Images

Intel is getting ready to launch a new security product that could dramatically reduce opportunities for hijacking. Called Intel Control-Flow Enforcement Technology (Intel CET), the product is designed to protect against the misuse of legitimate code through control-flow hijacking attacks. This technique is widely used in large classes of malware, and it’s been a challenge to mitigate the problem with software alone. Intel CET will offer CPU-level security capabilities from Intel’s upcoming mobile processer — code-named Tiger Lake — onwards.

As computer security has become more advanced, hackers have become more resourceful, increasingly finding ways to bypass protections – exploiting memory safety is one such way. Return Oriented Programming (also known as ROP) and Jump Oriented Programming (also known as JOP) in particular are popular with nefarious types. JOP or ROP attacks can be hard to detect or prevent because the attacker uses existing code running from executable memory in a creative way to change program behavior.

Intel CET
Intel

Intel CET offers software developers two main ways to help defend against control-flow hijacking malware: indirect branch tracking and shadow stack. Indirect branch tracking delivers indirect branch protection to defend against JOP attack methods, while shadow stack delivers return address protection to help defend against ROP attack methods. And again, it’s all built into the hardware, which means its better able to tackle threats at source than software.

Intel says that the product will eventually be available in future desktop and server platforms, but it’s already been working with Microsoft to integrate it with Windows 10. Microsoft’s upcoming support for Intel CET in Windows 10 will be called Hardware-enforced Stack Protection, and a preview of it is available today in Windows 10 Insider Previews.

 

All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
Comment
Comments
Share
223 Shares
Share
Tweet
Share

Popular on Engadget

Tom Hanks: 'Absolute heartbreak' that 'Greyhound' won't debut in theaters

Tom Hanks: 'Absolute heartbreak' that 'Greyhound' won't debut in theaters

View
‘Assassin’s Creed Valhalla’ gameplay footage surfaces in leaked videos

‘Assassin’s Creed Valhalla’ gameplay footage surfaces in leaked videos

View
Microsoft's first-party Xbox Games Showcase streams July 23rd

Microsoft's first-party Xbox Games Showcase streams July 23rd

View
Chrome update may extend your laptop's battery life by up to 2 hours

Chrome update may extend your laptop's battery life by up to 2 hours

View
Supreme Court rules against law allowing debt-collection robocalls to cell phones

Supreme Court rules against law allowing debt-collection robocalls to cell phones

View

From around the web

Page 1Page 1ear iconeye iconFill 23text filevr