Good afternoon,
my name is Christos and I'm an MSc student in Information Security at
Royal Holloway University of London.
I was recently thinking of how could a kernel control flow integrity
mechanism at compile time by enforcing checks on the ret instructions. I
think that a good start for that would be to perform these checks to
"hot-spot" data structures of the kernel which are usually subverted
during an intrusion (mainly by rootkits).
I don't have previous experience with the gcc project and the only big
project I've worked on before is syslog-ng. As a result I really need
comments upon the idea and mentoring. I have in mind that it can be a
good start for an extensible control flow integrity at compile time.
I'll be waiting for discussion.
Cheers
--
Christos Tsopokis
