Making Information Hiding Effective Again
文献类型:期刊论文
| 作者 | Wang, Zhe5,6; Wu, Chenggang5,6; Zhang, Yinqian7; Tang, Bowen5,6; Yew, Pen-Chung2; Xie, Mengyao5,6; Lai, Yuanming5,6; Kang, Yan5,6; Cheng, Yueqiang3; Shi, Zhiping1,4 |
| 刊名 | IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING
 |
| 出版日期 | 2022-07-01 |
| 卷号 | 19期号:4页码:2576-2594 |
| 关键词 | Instruction sets Registers Computer crashes Entropy Kernel Security Probes Side channel attacks information hiding intra-process memory isolation TLB misses |
| ISSN号 | 1545-5971 |
| DOI | 10.1109/TDSC.2021.3064086 |
| 英文摘要 | Information hiding (IH) is an important building block for many defenses against code reuse attacks, such as code-pointer integrity (CPI), control-flow integrity (CFI) and fine-grained code (re-)randomization, because of its effectiveness and performance. It employs randomization to probabilistically "hide" sensitive memory areas, called safe areas, from attackers and ensures their addresses are not leaked by any pointers directly. These defenses used safe areas to protect their critical data, such as jump targets and randomization secrets. However, recent works have shown that IH is vulnerable to various attacks. In this article, we propose a new IH technique called SafeHidden. It continuously re-randomizes the locations of safe areas and thus prevents the attackers from probing and inferring the memory layout to find its location. A new thread-private memory mechanism is proposed to isolate the thread-local safe areas and prevent adversaries from reducing the randomization entropy. It also randomizes the safe areas after the TLB misses to prevent attackers from inferring the address of safe areas using cache side-channels. Existing IH-based defenses can utilize SafeHidden directly without any change. Our experiments show that SafeHidden not only prevents existing attacks effectively but also incurs low performance overhead. |
| 资助项目 | National High Technology Research and Development Program of China[2016QY07X1406] ; National Natural Science Foundation of China (NSFC)[61902374] ; National Natural Science Foundation of China (NSFC)[U1736208] ; NSF[CNS-1514444] |
| WOS研究方向 | Computer Science |
| 语种 | 英语 |
| WOS记录号 | WOS:000822381400001 |
| 出版者 | IEEE COMPUTER SOC |
| 源URL | [http://119.78.100.204/handle/2XEOYT63/19496]  |
| 专题 | 中国科学院计算技术研究所期刊论文_英文 |
| 通讯作者 | Wu, Chenggang |
| 作者单位 | 1.Beijing Key Lab Light Ind Robot & Safety Verifica, Beijing 100048, Peoples R China 2.Univ Minnesota Twin Cities, Dept Comp Sci & Engn, Minneapolis, MN 55455 USA 3.Baidu, Sunnyvale, CA 94089 USA 4.Capital Normal Univ, Coll Informat Engn, Beijing 100089, Peoples R China 5.Chinese Acad Sci, Inst Comp Technol, State Key Lab Comp Architecture, Beijing 100864, Peoples R China 6.Univ Chinese Acad Sci, Beijing 100190, Peoples R China 7.Ohio State Univ, Dept Comp Sci & Engn, Columbus, OH 43210 USA |
| 推荐引用方式 GB/T 7714 | Wang, Zhe,Wu, Chenggang,Zhang, Yinqian,et al. Making Information Hiding Effective Again[J]. IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING,2022,19(4):2576-2594. |
| APA | Wang, Zhe.,Wu, Chenggang.,Zhang, Yinqian.,Tang, Bowen.,Yew, Pen-Chung.,...&Shi, Zhiping.(2022).Making Information Hiding Effective Again.IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING,19(4),2576-2594. |
| MLA | Wang, Zhe,et al."Making Information Hiding Effective Again".IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING 19.4(2022):2576-2594. |
入库方式: OAI收割
来源:计算技术研究所
浏览0
下载0
收藏0
其他版本
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。