Skip to main content
Disciplines
Automotive Business IT + Informatics Construction + Real Estate Electrical Engineering + Electronics Energy + Sustainability Insurance + Risk Finance + Banking Management + Leadership Marketing + Sales Mechanical Engineering + Materials
Events
DE
EN
Books
Journals
Topic Page
Marketing
Start single access now
Access for companies
EXTENDED SEARCH
Log in
Top
Published in:
Introduction Read chapter Read first chapter

2021 | OriginalPaper | Chapter

5. Control-Flow Integrity Enforcement with Dynamic Code Optimization

Author : Yan Lin

Published in: Novel Techniques in Recovering, Embedding, and Enforcing Policies for Control-Flow Integrity

Publisher: Springer International Publishing

Log in

Activate our intelligent search to find suitable subject content or patents.

search-config
loading …

Abstract

Prior to the introduction of CFI in 2005, there have already been a lot of research on dynamic code optimization to improve performance of dynamic program interpreters. For example, Wiggins/Redstone [1], Dynamo [2], Mojo [3], and DynamoRIO [4].

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

  • über 102.000 Bücher
  • über 537 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Maschinenbau + Werkstoffe
  • Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

  • über 67.000 Bücher
  • über 390 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Maschinenbau + Werkstoffe




 

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

  • über 67.000 Bücher
  • über 340 Zeitschriften

aus folgenden Fachgebieten:

  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Versicherung + Risiko




Jetzt Wissensvorsprung sichern!

inform now
previous chapter Control-Flow Carrying Code
next chapter Conclusions
Footnotes
Literature
1.
D. Deaver, R. Gorton, N. Rubin, Wiggins/Redstone: an on-line program specializer, in Proceedings of the IEEE Hot Chips XI Conference (1999)
2.
V. Bala, E. Duesterwald, S. Banerjia, Dynamo: a transparent dynamic optimization system, in ACM SIGPLAN Notices, vol. 35 (ACM, 2000) pp. 1–12
3.
W.-K. Chen, S. Lerner, R. Chaiken, D.M. Gillies, Mojo: a dynamic optimization system, in Proceedings of the 3rd ACM Workshop on Feedback-Directed and Dynamic Optimization, pp. 81–90 (2000)
4.
D. Bruening, Efficient,transparent,and comprehensive runtime code manipulation. Ph.D. thesis, Massachusetts Institute of Technology (2004)
5.
V. Kiriansky, D. Bruening, S.P. Amarasinghe, Secure execution via program shepherding, in Proceedings of the 11st USENIX Security Symposium, vol. 92 (2002)
6.
M. Zhang, R. Sekar, Control flow integrity for cots binaries, in Proceedings of the 22nd USENIX Security Symposium, pp. 337–352 (2013)
7.
M. Abadi, M. Budiu, U. Erlingsson, J. Ligatti, Control-flow integrity, in Proceedings of the 12th ACM Conference on Computer and Communications security (ACM, 2005) pp. 340–353
8.
C. Zhang, T. Wei, Z. Chen, L. Duan, L. Szekeres, S. McCamant, D. Song, W. Zou, Practical control flow integrity and randomization for binary executables, in Proceedings of the 34th IEEE Symposium on Security and Privacy, (IEEE, 2013) pp. 559–573
9.
Y. Xia, Y. Liu, H. Chen, B. Zang, CFIMon: detecting violation of control flow integrity using performance counters, in Proceedings of the 42nd Annual IEEE/IFIP International Conference on Dependable Systems and Networks (IEEE, 2012) pp. 1–12
10.
L. Davi, A.-R. Sadeghi, M. Winandy, ROPdefender: a detection tool to defend against return-oriented programming attacks, in Proceedings of the 6th ACM Symposium on Information, Computer and Communications Security, (ACM, 2011) pp. 40–51
11.
V. Pappas, M. Polychronakis, A.D. Keromytis, Transparent \(\{\)ROP\(\}\) exploit mitigation using indirect branch tracing, in Proceedings of the 22nd USENIX Security Symposium, pp. 447–462 (2013)
12.
M. Payer, A. Barresi, T.R. Gross, Fine-grained control-flow integrity through binary hardening, in Proceedings of the 12th International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment (Springer, 2015), pp. 144–164
13.
J. Wilander, N. Nikiforakis, Y. Younan, M. Kamkar, W. Joosen, RIPE: runtime intrusion prevention evaluator, in Proceedings of the 27th Annual Computer Security Applications Conference (ACM, 2011), pp. 41–50
14.
T.H. Dang, P. Maniatis, D. Wagner, The performance cost of shadow stacks and stack canaries, in Proceedings of the 10th ACM Symposium on Information, Computer and Communications Security, vol. 15 (2015)
15.
E. Göktas, E. Athanasopoulos, H. Bos, G. Portokalidis, Out of control: overcoming control-flow integrity, in Proceedings of the 35th IEEE Symposium on Security and Privacy (IEEE, 2014), pp. 575–589
Metadata
Title
Control-Flow Integrity Enforcement with Dynamic Code Optimization
Author
Yan Lin
Copyright Year
2021
Book
Novel Techniques in Recovering, Embedding, and Enforcing Policies for Control-Flow Integrity

Print ISBN: 978-3-030-73140-3

Electronic ISBN: 978-3-030-73141-0

Copyright Year: 2021

DOI
https://doi.org/10.1007/978-3-030-73141-0_5

Premium Partner

    Image Credits