Memory safety bugs are a significant issue rooted in the use of the C and C++ languages that lack memory protection, legacy hardware that only offers coarse-grain protection, and limited testing and debugging methods leading to exploitable bugs. The CHERI project aims to address these problems by extending hardware Instruction-Set Architectures with new features to enable fine-grained memory protection and scalable compartmentalization. The Morello prototype architecture, developed by Arm, implements CHERI features and is being evaluated for widespread adoption. Rigorous engineering methods are used to provide high assurance of security properties of CHERI architectures through machine-checked mathematical proofs and model-based test generation.
https://www.lightbluetouchpaper.org/2022/07/22/formal-cheri/