Abstract : Although many countermeasures have been developed
for desktop and server environments, buffer overflows still pose a big
threat. The same approach can be used to target mobile devices.
Unfortunately, they place more severe limitations on countermeasures.
Not only are the performance requirements at least as important, memory
and power consumption need to be considered as well. Moreover,
processors used in mobile devices generally are equipped with a
different instruction set. Therefore countermeasures may not be ported
easily. Multistack is an effective countermeasure against stack-based
buffer overflows. It protects applications by using multiple stacks to
separate possible attack targets from possible sources. However, its
performance overhead will no longer be negligible on the ARMv7 platform
(widely used on mobile devices) and it wastes too much memory, making it
too costly for mobile applications. We propose 3 methods to reduce
memory overhead up to 28% with only a 3.91% performance
overhead.
https://hal.inria.fr/hal-01056081
Contributor : Hal Ifip <>
Submitted on : Thursday, August 14, 2014 - 5:56:57 PM Last modification on : Thursday, February 21, 2019 - 10:31:46 AM Long-term archiving on: : Thursday, November 27, 2014 - 1:36:30 AM
Raoul Strackx, Yves Younan, Pieter Philippaerts, Frank Piessens. Efficient and Effective Buffer Overflow
Protection on ARM Processors. 4th IFIP WG 11.2 International Workshop on Information Security Theory and Practices: Security and Privacy of Pervasive Systems and Smart Devices (WISTP), Apr 2010, Passau, Germany. pp.1-16, ⟨10.1007/978-3-642-12368-9_1⟩. ⟨hal-01056081⟩