CppCon 2019 has ended
Back To Schedule
Monday, September 16 • 16:45 - 17:45
Preventing Spectre One Branch at a Time: The Design and Implementation of Fine Grained Spectre v1 Mitigation APIs

Log in to save this to your schedule, view media, leave feedback and see who's attending!

Spectre is the first in a new class of security vulnerabilities which require programmers and the compiler to deal with microarchitectural details made visible during speculative execution. There are several API options which allow programmers to mitigate specific branches or pointers that are vulnerable to Spectre v1 in order to limit the performance impact of mitigation. In this talk, Devin and Zola will describe the unusual challenges in designing and implementing fine-grained Spectre (variant 1) mitigations, give an overview and demo of the APIs that exist today, and discuss the future of the APIs including the standardization proposal that is in progress.

Recommended background:
CppCon 2018: Chandler Carruth “Spectre: Secrets, Side-Channels, Sandboxes, and Security” https://www.youtube.com/watch?v=_f7O3IfIR2k


Zola Bridges

Software Engineer, Google
Zola Bridges works on the C++ Security team at Google. She has worked primarily on Speculative Load Hardening in LLVM.

Devin Jeanpierre

Software Engineer, Google

Monday September 16, 2019 16:45 - 17:45 MDT
Summit 6/7