Value-Based Constraint Control Flow Integrity
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Jung, Dongjae | ko |
| dc.contributor.author | 김민수 | ko |
| dc.contributor.author | Jang, Jinsoo | ko |
| dc.contributor.author | Kang, Brent Byunghoon | ko |
| dc.date.accessioned | 2020-04-29T03:20:04Z | - |
| dc.date.available | 2020-04-29T03:20:04Z | - |
| dc.date.created | 2020-04-27 | - |
| dc.date.created | 2020-04-27 | - |
| dc.date.created | 2020-04-27 | - |
| dc.date.issued | 2020-03 | - |
| dc.identifier.citation | IEEE ACCESS, v.8, pp.50531 - 50542 | - |
| dc.identifier.issn | 2169-3536 | - |
| dc.identifier.uri | http://hdl.handle.net/10203/274044 | - |
| dc.description.abstract | Control flow integrity (CFI) is a generic technique that prevents a control flow hijacking attacks by verifying the legitimacy of indirect branches against a predefined set of targets. State-of-the-art CFI solutions focus on reducing the number of targets using the context of a program such as the path to the indirect branch and the origin of the code pointer. However, these solutions work with an impractical assumption that the attacker only compromises control data; non-control data such as condition data that can also be abused by attackers are not considered. To overcome these limitations, in this paper, we propose value-based constraint CFI (vCFI) to improve the effectiveness of CFI by retrieving and protecting all data that can potentially be manipulated for control flow hijacking. We first perform static analysis such as dependency, condition, and data analyses to derive all control flow-related data. Then, vCFI protects these data during runtime by instrumenting a program to be hardened. We implemented vCFI as a compiler extension and evaluated its performance using SPEC CPU2006. The performance degradation caused by adopting vCFI was reasonable, and the average overhead was 13.6 & x0025;. | - |
| dc.language | English | - |
| dc.publisher | IEEE-INST ELECTRICAL ELECTRONICS ENGINEERS INC | - |
| dc.title | Value-Based Constraint Control Flow Integrity | - |
| dc.type | Article | - |
| dc.identifier.wosid | 000524898700029 | - |
| dc.identifier.scopusid | 2-s2.0-85082394551 | - |
| dc.type.rims | ART | - |
| dc.citation.volume | 8 | - |
| dc.citation.beginningpage | 50531 | - |
| dc.citation.endingpage | 50542 | - |
| dc.citation.publicationname | IEEE ACCESS | - |
| dc.identifier.doi | 10.1109/ACCESS.2020.2980026 | - |
| dc.contributor.localauthor | Kang, Brent Byunghoon | - |
| dc.description.isOpenAccess | Y | - |
| dc.type.journalArticle | Article | - |
| dc.subject.keywordAuthor | Runtime | - |
| dc.subject.keywordAuthor | Hardware | - |
| dc.subject.keywordAuthor | Static analysis | - |
| dc.subject.keywordAuthor | Data models | - |
| dc.subject.keywordAuthor | Instruments | - |
| dc.subject.keywordAuthor | Control flow hijacking | - |
| dc.subject.keywordAuthor | control flow integrity | - |
| dc.subject.keywordAuthor | non-control data | - |
| dc.subject.keywordAuthor | program analysis | - |
- Appears in Collection
- CS-Journal Papers(저널논문)
- Files in This Item
- ValueBased-Constraint-Control-Flow-Integrity202...(5.58 MB)Download
This item is cited by other documents in WoS
| ⊙ Detail Information in WoSⓡ | Click to see |  |
| ⊙ Cited 4 items in WoS | Click to see citing articles in |  |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.