VeriFence presented at this year’s LPC and RAID
Last month, Luis has presented his recent work on improved Spectre mitigations for Linux eBPF at Linux Plumbers Conference (LPC) and the 27th International Symposium on Research in Attacks, Intrusions and Defenses (RAID’24) (the former being located in Vienna, Austria and the latter in Padua, Italy). VeriFence simplifies the development of unprivileged applications that still benefit from eBPF’s performance advantages by precisely inserting speculation barriers to prevent unsafe program behavior. This improves upon the upstream Linux kernel which rejects any programs that contain unsafe behavior that could lead to Spectre exploits.
The talk from LPC is available online and the paper is open-access: