Abstract

The authors present dynamic reencryption of return addresses to mitigate their leakage. The authors' method enforces programs to save return addresses as encrypted and renew the encryption states with fresh keys before or after vulnerable operations. When a function returns, it should restore the return address from its encryption using the most recent key not to cause a crash. Under the protection of their method, return addresses and keys may leak, but the disclosed bits become garbage because keys govern all return addresses through encryption, while changing before control-flow proceeds into a vulnerable region. As a result, it becomes probabilistically infeasible to build exploits for intercepting control-flow by using leaked return addresses or keys. They implemented the proposed method as an extension of the LLVM compiler that inserts reencryption code where necessary. They also have confirmed its effectiveness against information leak attacks carried out in the early stage of blind return-oriented programming (BROP). The performance overhead ranges below 11.6% for processor-intensive programs and 4.12% or less for web servers.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Efficient Return Address Verification Based on Dislocated Stack
Jinfeng Li ... Qizhen Xu
IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems | VOL. 39
Jinfeng Li, et. al.Jinfeng Li ... Qizhen Xu
02 Oct 2020
Burn after reading
Changwei Zou ... Jingling Xue
-
Changwei Zou, et. al.Changwei Zou ... Jingling Xue
27 Jun 2020
Twine Stack: A Hybrid Mechanism Achieving Less Cost for Return Address Protection
Qizhen Xu ... Liwei Chen
-
Qizhen Xu, et. al.Qizhen Xu ... Liwei Chen
01 Nov 2021
Lightweight Hardware Return Address and Stack Frame Tracking to Prevent Function Return Address Attack
Wen-Fu Kao ... S Felix Wu
-
Wen-Fu Kao, et. al.Wen-Fu Kao ... S Felix Wu
01 Jan 2009
View more papers

More From: IET Information Security

Paper Title
Journal
Date
Author
Optimal Joint Defense and Monitoring for Networks Security under Uncertainty: A POMDP-Based Approach
Armita Kazeminajafabadi ... Mahdi Imani
IET Information Security | VOL. 2024
Armita Kazeminajafabadi, et. al.Armita Kazeminajafabadi ... Mahdi Imani
27 May 2024
Automated Differential-Linear Cryptanalysis for AND-RX Ciphers
Wenya Li ... Kai Zhang
IET Information Security | VOL. 2024
Wenya Li, et. al.Wenya Li ... Kai Zhang
21 May 2024
Unveiling the Neutral Difference and Its Automated Search
Guangqiu Lv ... Chenhui Jin
IET Information Security | VOL. 2024
Guangqiu Lv, et. al.Guangqiu Lv ... Chenhui Jin
14 May 2024
Boosting the Transferability of Ensemble Adversarial Attack via Stochastic Average Variance Descent
Lei Zhao ... Bin Pu
IET Information Security | VOL. 2024
Lei Zhao, et. al.Lei Zhao ... Bin Pu
11 May 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.