FRAMER/Miu: Tagged Pointer-based Capability and Fundamental Cost of Memory Safety & Coherence (Position Paper)
Myoung Jin Nam
TL;DR
FRAMER/Miu tackles memory-safety correctness under practical performance constraints by combining tagged pointers with per-object metadata to enable inline checks, while aiming to preserve coherence in non-coherent accelerator environments. The framework emphasizes wrapper-frame based metadata locality, two tag-encoding modes (slot-offset for small frames and shadow-table references for large frames), and in-frame pointer arithmetic checks to maintain efficiency. To reduce overhead, it explores hardware-assisted tagged-pointer strategies such as ARMv8's TopByteIgnore and customized ISA extensions, and expands security policies to include type confusion checks and coherence enforcement, with future work on garbage collection, dangling pointers, and happens-before analysis. This work positions FRAMER/Miu as a practical path toward production memory safety and coherence guarantees, balancing performance, interoperability, and detection coverage across software and hardware design spaces.
Abstract
Ensuring system correctness, such as memory safety, can eliminate security vulnerabilities that attackers could exploit in the first place. However, high and unpredictable performance degradation remains a primary challenge. Recognizing that it is extremely difficult to achieve complete system correctness for production deployment, researchers make trade-offs between performance, detection coverage, interoperability, precision, and detection timing. This research strikes a balance between comprehensive system protection and the costs required to obtain it, identifies the desirable roles of software and hardware, and presents a tagged pointer-based capability system as a stand-alone software solution and a prototype for future hardware design. This paper presents follow-up plans for the FRAMER/Miu generic framework to achieve these goals.