RAGuard: An Efficient and User-Transparent Hardware Mechanism against ROP Attacks
文献类型:期刊论文
| 作者 | Song, Wei1,4; Hou, Rui1,4; Zhang, Jun5,6; Zhang, Lixin2; Meng, Dan1,4; Chen, Mingyu2; Zheng, Chen2; Jia, Zhen2; Mckee, Sally A.3 |
| 刊名 | ACM TRANSACTIONS ON ARCHITECTURE AND CODE OPTIMIZATION
 |
| 出版日期 | 2019 |
| 卷号 | 15期号:4页码:21 |
| 关键词 | Code-reuse attacks return-oriented programming attacks message authentication code AES-128 key management PUF |
| ISSN号 | 1544-3566 |
| DOI | 10.1145/3280852 |
| 英文摘要 | Control-flow integrity (CFI) is a general method for preventing code-reuse attacks, which utilize benign code sequences to achieve arbitrary code execution. CFI ensures that the execution of a program follows the edges of its predefined static Control-Flow Graph: any deviation that constitutes a CFI violation terminates the application. Despite decades of research effort, there are still several implementation challenges in efficiently protecting the control flow of function returns (Return-Oriented Programming attacks). The set of valid return addresses of frequently called functions can be large and thus an attacker could bend the backward-edge CFI by modifying an indirect branch target to another within the valid return set. This article proposes RAGuard, an efficient and user-transparent hardware-based approach to prevent Return-Oreiented Programming attacks. RAGuard binds a message authentication code (MAC) to each return address to protect its integrity. To guarantee the security of the MAC and reduce runtime overhead: RAGuard (1) computes the MAC by encrypting the signature of a return address with AES-128, (2) develops a key management module based on a Physical Unclonable Function (PUF) and a True Random Number Generator (TRNG), and (3) uses a dedicated register to reduce MACs' load and store operations of leaf functions. We have evaluated our mechanism based on the open-source LEON3 processor and the results show that RAGuard incurs acceptable performance overhead and occupies reasonable area. |
| 资助项目 | China National Science Fund for Excellent Young Scholars[61522212] ; National Key RD Plan[2017YFB1001602] ; Chinese Academy of Science[QYZDB-SSW-JSC010] ; CAS Pioneer Hundred Talents Program ; National Natural Science Foundation of China (NSFC)[61521092] ; National Natural Science Foundation of China (NSFC)[61502459] ; Frontier Science Research Projects |
| WOS研究方向 | Computer Science |
| 语种 | 英语 |
| WOS记录号 | WOS:000457136000011 |
| 出版者 | ASSOC COMPUTING MACHINERY |
| 源URL | [http://119.78.100.204/handle/2XEOYT63/3430]  |
| 专题 | 中国科学院计算技术研究所期刊论文_英文 |
| 通讯作者 | Hou, Rui; Meng, Dan |
| 作者单位 | 1.Chinese Acad Sci, Inst Informat Engn, Beijing 100190, Peoples R China 2.Chinese Acad Sci, Inst Comp Technol, Beijing 100190, Peoples R China 3.Clemson Univ, Elect & Comp Engn, Clemson, SC 29630 USA 4.Chinese Acad Sci, Inst Informat Engn, State Key Lab Informat Secur, Beijing, Peoples R China 5.Hubei Univ Arts & Sci, Xiangyang 441053, Peoples R China 6.Chinese Acad Sci, ICT, State Key Lab Comp Architecture, Beijing, Peoples R China |
| 推荐引用方式 GB/T 7714 | Song, Wei,Hou, Rui,Zhang, Jun,et al. RAGuard: An Efficient and User-Transparent Hardware Mechanism against ROP Attacks[J]. ACM TRANSACTIONS ON ARCHITECTURE AND CODE OPTIMIZATION,2019,15(4):21. |
| APA | Song, Wei.,Hou, Rui.,Zhang, Jun.,Zhang, Lixin.,Meng, Dan.,...&Mckee, Sally A..(2019).RAGuard: An Efficient and User-Transparent Hardware Mechanism against ROP Attacks.ACM TRANSACTIONS ON ARCHITECTURE AND CODE OPTIMIZATION,15(4),21. |
| MLA | Song, Wei,et al."RAGuard: An Efficient and User-Transparent Hardware Mechanism against ROP Attacks".ACM TRANSACTIONS ON ARCHITECTURE AND CODE OPTIMIZATION 15.4(2019):21. |
入库方式: OAI收割
来源:计算技术研究所
浏览0
下载0
收藏0
其他版本
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。