Analyzing the Gadgets Towards a Metric to Measure Gadget Quality

Abstract : Current low-level exploits often rely on code-reuse, whereby short sections of code (gadgets) are chained together into a coherent exploit that can be executed without the need to inject any code. Several protection mechanisms attempt to eliminate this attack vector by applying code transformations to reduce the number of available gadgets. Nevertheless, it has emerged that the residual gadgets can still be sufficient to conduct a successful attack. Crucially, the lack of a common metric for " gadget quality " hinders the effective comparison of current mitigations. This work proposes four metrics that assign scores to a set of gadgets, measuring quality, usefulness, and practicality. We apply these metrics to binaries produced when compiling programs for architectures implementing Intel's recent MPX CPU extensions. Our results demonstrate a 17% increase in useful gadgets in MPX binaries, and a decrease in side-effects and preconditions, making them better suited for ROP attacks.
Type de document :
Communication dans un congrès
International Symposium on Engineering Secure Software and Systems, Apr 2016, London, United Kingdom
Liste complète des métadonnées

Littérature citée [32 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01321480
Contributeur : Alexandre Bartel <>
Soumis le : mercredi 25 mai 2016 - 17:01:06
Dernière modification le : jeudi 26 mai 2016 - 08:39:53
Document(s) archivé(s) le : vendredi 26 août 2016 - 11:09:24

Fichiers

paper.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : hal-01321480, version 1

Citation

Andreas Follner, Alexandre Bartel, Eric Bodden. Analyzing the Gadgets Towards a Metric to Measure Gadget Quality. International Symposium on Engineering Secure Software and Systems, Apr 2016, London, United Kingdom. 〈hal-01321480〉

Partager

Métriques

Consultations de la notice

15

Téléchargements de fichiers

50