Chromium web browsers, including Google Chrome and Microsoft Edge, will soon receive valuable security backing from Intel. Both browsers benefit from CET protection (Intel Control-Flow Enforcement Technology), provided that they are run on devices that are operated with 11th generation Intel CPUs.
The CET security function prevents exploits from abusing the normal control flow transfer instructions of an application. This method is sometimes used by attackers to insert malicious code. In particular, CET should protect against ROP attacks (Return Oriented Programming) and JOP attacks (Jump Oriented Programming).
“JOP or ROP attacks can be particularly difficult to detect or prevent because the attacker uses existing code from executable memory in creative ways to change the program behavior,” said Baiju V Patel, cloud solutions specialist at Microsoft. “What makes ROP / JOP difficult to detect or prevent is the fact that an attacker is using existing code that is being executed from executable memory.