Capstone

A Capability-based Foundation for Trustless Secure Memory Access

What Is Capstone?

Capstone is a new capability-based instruction set architecture (ISA) that provides a unified hardware-software interface to support a wide range of security features, including spatial and temporal memory safety, enclaved trusted execution environments, and extensible privilege hierarchies.

If you want to cite Capstone, please use the following BibTeX entry:

@inproceedings {yu2023capstone,
    author = {Jason Zhijingcheng Yu and Conrad Watt and Aditya Badole and Trevor E. Carlson and Prateek Saxena},
    title = {Capstone: A Capability-based Foundation for Trustless Secure Memory Access},
    booktitle = {32nd USENIX Security Symposium (USENIX Security 23)},
    year = {2023},
    isbn = {978-1-939133-37-3},
    address = {Anaheim, CA},
    pages = {787--804},
    url = {https://www.usenix.org/conference/usenixsecurity23/presentation/yu-jason},
    publisher = {USENIX Association},
    month = aug,
}

Contribute to Capstone

We welcome the community to contribute to Capstone. Please feel free to submit a pull request or open an issue on our GitHub repositories. You are also welcome to chat on our forum or directly contact us via email.

News

September 1, 2023

RISC-V Security HC Meeting Talk Slides

July 19, 2023

Capstone Specification Released