In a move to address the pressing issue of cybersecurity, Codasip, a prominent player in RISC-V Custom Compute solutions, has introduced the first commercial implementation of Capability Hardware Enhanced RISC Instructions (CHERI) technology. Developed at the University of Cambridge, CHERI technology represents a significant advancement in hardware and software design, focusing on enhancing system security through fine-grained memory protection and scalable software compartmentalization.
Memory safety concerns have long plagued processor and System-on-Chip (SoC) designers, device manufacturers, and end users, with approximately 70% of operating system and browser vulnerabilities recorded in the Common Vulnerabilities and Exposures (CVE) program attributed to software memory errors. Addressing this challenge has been complicated by the complexity of the problem, requiring expensive hardware modifications or disruptive software changes for effective memory protection.
Codasip’s implementation of CHERI technology offers a potential solution, enabling companies to proactively enhance security without dependence on vendor patches. By integrating CHERI-based custom instructions into its 700 processor family through Codasip Studio, the company extends the RISC-V Instruction-Set Architecture (ISA) and introduces built-in fine-grained memory protection. This approach ensures that existing products can be fortified against cyber threats with minimal effort, often necessitating only a code recompilation.
Ron Black, CEO of Codasip, stressed the urgency of addressing cybersecurity challenges, stating, “Unsafe and insecure products risk causing privacy violations, reputational damage, and financial loss that are unacceptable, be it in cars, routers, medical devices, or any other consumer product. Codasip CHERI technology provides a robust solution to counter the most common cyberattacks, ensuring user safety and data integrity.”
Professor Robert N. M. Watson from the University of Cambridge emphasized the significance of CHERI technology, stating, “CHERI extends conventional hardware Instruction-Set Architectures with new features, enabling fine-grained memory protection and efficient compartmentalization. This innovation offers strong and compatible protection against widely exploited vulnerabilities in historically memory-unsafe programming languages like C and C++.”
Codasip’s implementation of CHERI technology aligns with initiatives like Digital Security by Design (DSbD) by UK Research and Innovation, underscoring the importance of integrating security into products and services. Professor John Goodacre, Director of DSbD, expressed his enthusiasm about Codasip’s commercial implementation of CHERI, calling it a significant milestone in creating a secure future for individuals and businesses.
With cybersecurity threats on the rise, Codasip’s introduction of CHERI technology represents a substantial step towards enhancing the security of consumer products. It offers an effective and practical solution to mitigate common cyberattacks, ensuring user privacy and data protection without requiring extensive hardware modifications or disruptive software changes.
