What a great time at the NDSS Symposium in San Diego. While it is always about meeting friends, catching up on projects, discussing new and exciting research and looking for potential collaborations, the HexHive lab also had the pleasure to present a total of four research papers at this conference! While the new location is no longer right at the beach, it has its perks with lots more restaurants nearby and great piers to stroll along.
Our works target the security and safety of core infrastructure such as browsers, hypervisors, and system services. Through a combination of mitigation, sanitization, and fuzzing we increase the resilience of our core systems against attacks.
First, Nicolas presented his PhD work on type++, where we introduce a dialect of C++ that is fully type safe. Type++ validates all cast operations at runtime and ensures that no type confusion is possible. With only 229 lines of code changed, we even protect most of Chromium with negligible performance impact.
Second, Liam presented his work on Dumpling, where we create detailed state snapshots as an oracle to detect misalignment between the V8 interpreter and optimizing compiler. This key insight of slightly modifying the JavaScript engine allows our fuzzer detailed visibility of the internal program state and enabled us to find severe vulnerabilities.
Third, Matteo presented his work on QMsan, where we design an efficient two-tier sanitizer that detects uninitialized memory during fuzzing campaigns. Through binary rewriting, we can check all executed code gaining essential coverage and reducing false positives. To further improve performance, we also greedily reduce instrumentation, only running it on demand.
Fourth, Zheyu presented his work on Truman, where we fuzz virtual devices of hypervisors. By automatically extracting state dependencies, inter-message dependencies, and intra-message dependencies we create precise peripheral models that our fuzzer then uses to thoroughly explore virtual devices.
While all credit goes to the students working tirelessly on these projects, I'm proud of the HexHive family that we achieved such a great and impressive result. Nicolas made great progress towards his PhD that he will defend in about a month, Liam and Julian did an amazing master project with us, Matteo, who was advised by Daniele, did immense progress on his PhD and Zheyu who was a visiting PhD student also just defended his PhD. In addition to the artifact evaluation, we are also extremely proud to receive two distinguished paper awards at NDSS for Type++ and Dumpling. Keep your eyes open for these people as they are out to do great things!