"The new Rust-based DNS parser significantly reduces our security risk by mitigating an entire class of vulnerabilities in a risky area, while also laying the foundation for broader adoption of memory-safe code in other areas."
"DNS is a complex protocol and requires parsing of untrusted data, which can lead to vulnerabilities, particularly when implemented in a memory-unsafe language. Implementing the DNS parser in Rust offers value by decreasing the attack surfaces associated with memory unsafety."
Google has integrated a Rust-based Domain Name System (DNS) parser into the modem firmware of Pixel phones to enhance security. This move addresses memory safety issues associated with legacy C and C++ code. The cellular modem has become a target for attackers, and the new parser mitigates vulnerabilities in this area. The DNS protocol is crucial for modern communications, and implementing it in Rust decreases attack surfaces. The Pixel 10 series is the first to adopt this memory-safe language, marking a significant advancement in security.
Read at SecurityWeek
Unable to calculate read time
Collection
[
|
...
]