cheriot-ibex

cheriot-ibex is a RTL implementation of CHERIoT ISA based on LowRISC's Ibex core. (by microsoft)
Add to my DEV experience Suggest topics
Source Code
Suggest alternative
Edit details
Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured
Suggest an alternative to cheriot-ibex

cheriot-ibex reviews and mentions

Posts with mentions or reviews of cheriot-ibex. We have used some of these posts to build our list of alternatives and similar projects.
  • What’s the Smallest Variety of CHERI? (2022)
    1 project | news.ycombinator.com | 12 Sep 2023
    Since this was published MS have published the RTL of their CHERIoT Ibex variant: https://github.com/microsoft/cheriot-ibex. There's also the full technical report and software stack including RTOS available: https://www.microsoft.com/en-us/research/publication/cheriot...

    I always thought it made more sense to try introducing capabilities on higher-performance applications (all the stuff you might use an arm A-class for) given they are pretty heavyweight. This is what Arm's Morello (https://www.arm.com/architecture/cpu/morello) offer. However introducing them at the low end, in the embedded space, instead may work a lot better. Within the A-class processor space there's a huge software ecosystem to work with and your software likely comes from multiple vendors, it's an uphill struggle to inject capabilities into that space, especially if you want to make full use of them.

    With embedded applications you tend to have far tighter control over the whole software stack, there's a lot more vertical integration and it's pretty static. Once you've deployed your product it's doing the same job day in day out. You need occasional updates, maybe the odd new feature but it's a very different world to the software stack on the typical phone. So overall easier for a single company or group to say 'yes let's try capabilities' and just get on and do it.

    Security is potentially a lot more critical in these applications as well. Everyone knows IoT security is a joke but regulators are watching this too and there will be future legislation that will put a lot more liability on the manufacturers of IoT devices and they'll need to demonstrate they've taken security seriously, using a capability based system is one way to do that.

    Operational technology (industrial IoT) is also a key area of concern for security. Having unsecure internet enabled operational technology running critical infrastructure and industrial processes is clearly a major issue. The various cyber security agencies across the western world recognise this and published a guide: https://www.cisa.gov/resources-tools/resources/secure-by-des... urging security by design and default and it explicitly mentions CHERI. Again the initial costs and work to introduce capabilities become very justifiable against the security (and critically for companies, liability reduction) benefits.

Stats

Basic cheriot-ibex repo stats
1
57
8.7
13 days ago

microsoft/cheriot-ibex is an open source project licensed under Apache License 2.0 which is an OSI approved license.

The primary programming language of cheriot-ibex is SystemVerilog.


Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com