Midas
Systematic kernel TOCTTOU protection
During a syscall, the kernel might read multiple times a value from userspace. As theses are controlled by the unpriviliged process, it may introduce subtle changes of behavior and possible hard-to-detect attacks, a classic time-of-check-to-time-of-use bug. Midas disable this attack surface by always returning the same values during a given syscall.
inactive
—
entered showcase: 2022-09-27
—
entry updated: 2024-04-12
This project has not yet been evaluated by the C4DT Factory team.
We will be happy to evaluate it upon request.
Application
C
other