g-kouv
commented
2 years ago This sounds like a very important topic and we should absolutely include it.
I agree that Other Security Topics seems like the best place at the moment, but this seems to have strong connections to the Memory Vulnerabilities chapter too.
Consider section on ABI vulnerabilities. The premise is that some computing systems provide a security enclave, for example, Arm TrustZone and Intel SGX. When such an enclave exists there is usually a way to call from outside to inside or vice versa, and this requires care at ABI level to ensure that outside cannot unduly influence inside and cannot reveal private state of inside. There have been cases where the security has not been sufficiently enforced, for example:
Leaking Uninitialized Secure Enclave Memory via Structure Padding
Faulty Point Unit: ABI Poisoning Attacks on Intel SGX
If the topic is accepted, we shall need to decide where it best fits. At the moment, in the Other Security Topics section is a reasonable place. Other suggestions welcome.