Software Fault Isolation (SFI) is an effective approach to sandboxing binary code of questionable provenance, an interesting use case for native plugins in a Web browser. We present software fault isolation schemes for ARM and x86-64 that provide control-flow and memory integrity with average performance overhead of under 5% on ARM and 7% on x86-64. We… (More)
MCP is an explicit-state software model checker that supports the entire C++ programming language. In this paper, we describe its architecture and present some initial results.