Efficient and Effective Buffer Overflow Protection on ARM Processors

Raoul Strackx 1 Yves Younan 1 Pieter Philippaerts 1 Frank Piessens 1
1 KU Leuven - Katholieke Universiteit Leuven
Abstract : Although many countermeasures have been developed for desktop and server environments, buffer overflows still pose a big threat. The same approach can be used to target mobile devices. Unfortunately, they place more severe limitations on countermeasures. Not only are the performance requirements at least as important, memory and power consumption need to be considered as well. Moreover, processors used in mobile devices generally are equipped with a different instruction set. Therefore countermeasures may not be ported easily. Multistack is an effective countermeasure against stack-based buffer overflows. It protects applications by using multiple stacks to separate possible attack targets from possible sources. However, its performance overhead will no longer be negligible on the ARMv7 platform (widely used on mobile devices) and it wastes too much memory, making it too costly for mobile applications. We propose 3 methods to reduce memory overhead up to 28% with only a 3.91% performance overhead.
Keywords : Control flow attacks Stack-based buffer overflow Software security mobile platform
Type de document :
Communication dans un congrès
Pierangela Samarati; Michael Tunstall; Joachim Posegga; Konstantinos Markantonakis; Damien Sauveron. 4th IFIP WG 11.2 International Workshop on Information Security Theory and Practices: Security and Privacy of Pervasive Systems and Smart Devices (WISTP), Apr 2010, Passau, Germany. Springer, Lecture Notes in Computer Science, LNCS-6033, pp.1-16, 2010, Information Security Theory and Practices. Security and Privacy of Pervasive Systems and Smart Devices. 〈10.1007/978-3-642-12368-9_1〉
Liste complète des métadonnées

Littérature citée [18 références]  Voir  Masquer  Télécharger
https://hal.inria.fr/hal-01056081
Contributeur : Hal Ifip <>
Soumis le : jeudi 14 août 2014 - 17:56:57
Dernière modification le : vendredi 11 août 2017 - 15:12:42
Document(s) archivé(s) le : jeudi 27 novembre 2014 - 01:36:30

Fichier

60330001.pdf
Fichiers produits par l'(les) auteur(s)

Licence

Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Collections

IFIP-LNCS | IFIP | IFIP-LNCS-6033 | IFIP-TC | IFIP-TC11 | IFIP-WISTP | IFIP-WG11-2

Citation

Raoul Strackx, Yves Younan, Pieter Philippaerts, Frank Piessens. Efficient and Effective Buffer Overflow Protection on ARM Processors. Pierangela Samarati; Michael Tunstall; Joachim Posegga; Konstantinos Markantonakis; Damien Sauveron. 4th IFIP WG 11.2 International Workshop on Information Security Theory and Practices: Security and Privacy of Pervasive Systems and Smart Devices (WISTP), Apr 2010, Passau, Germany. Springer, Lecture Notes in Computer Science, LNCS-6033, pp.1-16, 2010, Information Security Theory and Practices. Security and Privacy of Pervasive Systems and Smart Devices. 〈10.1007/978-3-642-12368-9_1〉. 〈hal-01056081〉

Exporter

BibTeX TEI DC DCterms EndNote

Partager

Métriques

Consultations de la notice

48

Téléchargements de fichiers

486

Contact


archive-ouverte@inria.fr