Effective Control Flow Integrity Checks for Intrusion Detection

Electronic equipment used in harsh environments such as space has to cope with many threats. One major threat is the intensive radiation which gives rise to Single Event Upsets (SEU) that lead to control flow errors and data errors. In the design of embedded systems to be used in space, the use of radiation tolerant equipment may therefore be a necessity. However, even if the higher cost of such a choice is not a problem, the efficiency of such equipment is lower than the COTS equipment. Therefore, the use of COTS with appropriate measures to handle the threats may be the optimal solution, in which a simultaneous optimization is carried out for power, performance, reliability and cost. In this paper, a novel method is presented for control flow error detection in multitask environments with less memory and performance overheads as compared to other methods seen in the literature.

Download Full-text

Static-Dynamic Control Flow Integrity

2014 Ninth International Conference on P2P, Parallel, Grid, Cloud and Internet Computing ◽

10.1109/3pgcic.2014.58 ◽

2014 ◽

Cited By ~ 1

Author(s):

Xiaolong Liu ◽

Qiang Wei ◽

Ziwei Ye

Keyword(s):

Dynamic Control ◽

Control Flow ◽

Control Flow Integrity

Download Full-text

Reconciling optimization with secure compilation

Proceedings of the ACM on Programming Languages ◽

10.1145/3485519 ◽

2021 ◽

Vol 5 (OOPSLA) ◽

pp. 1-30

Author(s):

Son Tuan Vu ◽

Albert Cohen ◽

Arnaud De Grandmaison ◽

Christophe Guillon ◽

Karine Heydemann

Keyword(s):

Side Effects ◽

Control Flow ◽

Partial Ordering ◽

Input Output ◽

Machine Code ◽

Fine Grained ◽

Control Flow Integrity ◽

Correct Execution ◽

Source Level ◽

And Performance

Software protections against side-channel and physical attacks are essential to the development of secure applications. Such protections are meaningful at machine code or micro-architectural level, but they typically do not carry observable semantics at source level. This renders them susceptible to miscompilation, and security engineers embed input/output side-effects to prevent optimizing compilers from altering them. Yet these side-effects are error-prone and compiler-dependent. The current practice involves analyzing the generated machine code to make sure security or privacy properties are still enforced. These side-effects may also be too expensive in fine-grained protections such as control-flow integrity. We introduce observations of the program state that are intrinsic to the correct execution of security protections, along with means to specify and preserve observations across the compilation flow. Such observations complement the input/output semantics-preservation contract of compilers. We introduce an opacification mechanism to preserve and enforce a partial ordering of observations. This approach is compatible with a production compiler and does not incur any modification to its optimization passes. We validate the effectiveness and performance of our approach on a range of benchmarks, expressing the secure compilation of these applications in terms of observations to be made at specific program points.

Download Full-text

Control-flow integrity

Proceedings of the 12th ACM conference on Computer and communications security - CCS '05 ◽

10.1145/1102120.1102165 ◽

2005 ◽

Cited By ~ 418

Author(s):

Martín Abadi ◽

Mihai Budiu ◽

Úlfar Erlingsson ◽

Jay Ligatti

Keyword(s):

Control Flow ◽

Control Flow Integrity

Download Full-text

$$\tau $$ CFI: Type-Assisted Control Flow Integrity for x86-64 Binaries

Research in Attacks, Intrusions, and Defenses - Lecture Notes in Computer Science ◽

10.1007/978-3-030-00470-5_20 ◽

2018 ◽

pp. 423-444 ◽

Cited By ~ 1

Author(s):

Paul Muntean ◽

Matthias Fischer ◽

Gang Tan ◽

Zhiqiang Lin ◽

Jens Grossklags ◽

...

Keyword(s):

Control Flow ◽

Control Flow Integrity

Download Full-text

Research on Control Flow Integrity Scheme for Android Platform

2019 International Conference on Intelligent Computing, Automation and Systems (ICICAS) ◽

10.1109/icicas48597.2019.00023 ◽

2019 ◽

Author(s):

Jiesheng Zheng ◽

Wuqiang Shen ◽

Yanwei Shang ◽

Aohui Wang ◽

Ruigang Liang ◽

...

Keyword(s):

Control Flow ◽

Android Platform ◽

Control Flow Integrity

Download Full-text

Taint Graph of System Call Arguments for Intrusion Detection in Mobile Intelatrac

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.546-547.1101 ◽

2012 ◽

Vol 546-547 ◽

pp. 1101-1106

Author(s):

Dan Nie ◽

Yu Hui Wang

Keyword(s):

Intrusion Detection ◽

Control Flow ◽

System Call ◽

Mobile Telecommunication ◽

Control Data ◽

Critical Data ◽

Buffer Overflows ◽

System Calls ◽

Flow Information ◽

Behavior Profile

The intended data-flow in a vulnerable program is subject to be subverted by attacks which exploit buffer overflows or format string vulnerabilities to write data to unintended location. In Mobile Telecommunication it is especially important on data safety. These attacks can be classified into two types: control-flow-attacks exploit buffer overflows or other vulnerabilities to overwrite a return address, a function pointer, or some other piece of control-data; non-control-data attacks exploit similar vulnerabilities to overwrite security critical data without subverting the intended control-flow in the program. The control-flow attacks are well studied and widely used, so there are several typical approaches to prevent them, which monitor the sequence of system calls emitted by the application being monitored and utilize control-flow information of the system calls for intrusion detection. However, the non-control-data attacks are rare for the reason that they rely on specific semantics of the target applications, and there are only few works that defend them to some extent. In order to prevent non-control-data attacks, we leverage dynamic taint technique to track the instruction level relationship between different system call arguments and construct taint graph which can represent behavior profile of a benign program in this paper..

Download Full-text