Wouldn't it be nice to have months-to-years of warning that your security defenses were going to fall, instead of the usual zero day event where you spend the whole night frantically trying to fix a newly discovered vulnerability before every junior script kiddie on the planet starts pwn'ing your entire customer base! In this talk, I'll dive into why today's system security technologies are not very durable and share with you our work toward more durable security defenses. First, I'll detail the Morpheus secure RISC-V CPU, which successfully fended off all attacks from 535 cybersecurity researchers recruited by DARPA over a three-month period in the summer of 2020. Morpheus implements a RISC-V extension that supports always-encrypted code and pointers with churn. Next, I'll detail the commercialization of Morpheus in the ØZone Secret Processing Unit (SPU), a high-security coprocessor for secret computation that is attempting to become the first processor to achieve zero software trust, such that no existing software hacks of any kind are capable of penetrating its system security defenses. ØZone creates many avenues for privacy-enhanced computation that could significantly ease the tension between data discovery and data privacy.
