Minos: Control data attack prevention orthogonal to memory model

Proceedings of the Annual International Symposium on Microarchitecture, MICRO

Volumn , Issue , 2004, Pages 221-232

  Crandall, Jedidiah R ^a   Chong, Frederic T ^a  

^a University of California   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

CONTROL FLOWS; MICROARCHITECTURAL MECHANISM; MINOS SYSTEMS; PENTIUM-BASED EMULATORS;

BOOLEAN ALGEBRA; C (PROGRAMMING LANGUAGE); COMPUTER OPERATING SYSTEMS; COMPUTER SOFTWARE; DATA TRANSFER; MATHEMATICAL MODELS;

COMPUTER ARCHITECTURE;

EID: 21644482450     PISSN: 10724451     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/MICRO.2004.26     Document Type: Conference Paper

References (36)

1. Bochs: the Open Source IA-32 Emulation Project (Home Page), http://bochs.sourceforge.net.
2. CERT, http://www.cert.org.
3. http://minos.cs.ucdavis.edu/.
4. Security Focus Vulnerability Notes, www.securityfocus.com.
5. D. Alighieri. Inferno, (Robert Pinski Translation).
6. B. Babayan. Security, www.elbrus.ru/mcst/eng/SECURE_INFORMATION_SYSTEM. V5-2e.pdf.
7. E. G. Barrantes, D. H. Ackley, T. S. Palmer, D. Stefanovic, and D. D. Zovi. Randomized instruction set emulation to disrupt binary code injection attacks. In Proceedings of the 10th ACM conference on Computer and Communication Security, pages 281-289. ACM Press, 2003.
8. K. J. Biba. Integrity Considerations for Secure Computer Systems. In MITRE Technical Report TR-3153, Apr 1977.
9. D. Boutcher. The Linux Kernel on iSeries.
10. D. D. Bovet and M. Cesati. Understanding the Linux kernel, 2nd. edition. O'Reilly, Sebastopol, CA, 2002.
11. C. Cowan, M. Barringer, S. Beattie, G. Kroah-Hartman, M. Frantzen, and J. Lokier. FormatGuard: Automatic protection from printf format string vulnerabilities. In Proc. of the 10th Usenix Security Symposium, Aug 2001.
12. C. Cowan, S. Beattie, J. Johansen, and P. Wagle. PointGuard™: Protecting pointers from buffer overflow vulnerabilities. In Proc. of the 12th Usenix Security Symposium, Aug 2003.
13. C. Cowan, C. Pu, D. Maier, J. Walpole, P. Bakke, S. Beattie, A. Grier, P. Wagle, Q. Zhang, and H. Hinton. Stack-Guard: Automatic adaptive detection and prevention of buffer-overflow attacks. In Proc. of the 7th Usenix Security Symposium, pages 63-78, Jan 1998.
14. J. R. Crandall and F. T. Chong. A Security Assessment of the Minos Architecture. In Workshop on Architectural Support for Security and Anti-Virus, Oct. 2004.
15. T. Fraser. Lomac: Low water-mark integrity protection for COTS environments. In Proceedings of the 2000 IEEE Symposium on Security and Privacy (S&P 2000), page 230. IEEE Computer Society, 2000.
16. Intel. Press Release, 12 March 2002.
17. jp. Advanced Doug lea's malloc() exploits, Phrack 61.
18. V. Kiriansky, D. Bruening, and S. Amarasinghe. Secure execution via program shepherding. In 11th USENIX Security Symposium, Aug. 2002.
19. D. Kirovski, M. Drinic, and M. Potkonjak. Enabling trusted software integrity. In Proceedings of ASPLOS-X, San Jose, CA, 2002.
20. C. Ko, T. Fraser, L. Badger, and D. Kilpatrick. Detecting and countering system intrusions using software wrappers. In Proceedings of the USENIX Security Conference, pages 145-156, Jan 2000.
21. H. M. Levy. Capability-Based Computer Systems. Butterworth-Heinemann, 1984.
22. D. Lie, C. A. Thekkath, M. Mitchell, P. Lincoln, D. Boneh, J. C. Mitchell, and M. Horowitz. Architectural Support for Copy and Tamper Resistant Software. In Proceedings of ASPLOS-IX, pages 168-177, 2000.
23. D. Moore, C. Shannon, and J. Brown. Code-Red: A study on the spread and victims of an Internet Worm. In Internet Management Workshop, 2002.
24. National Security Agency. Final Evaluation Report, IBM Corporation Application System 400.
25. Nergal. The advanced retum-into-lib(c) exploits: PaX case study, Phrack 58.
26. D. A. Patterson and J. L. Hennessy. Computer Architecture: A Quantitative Approach 3rd. ed. Morgan Kaufmann, San Mateo, 2003.
27. F. J. Pollack, G. W. Cox, D. W. Hammerstrom, K. C. Kahn, K. K. Lai, and J. R. Rattner. Supporting ada memory management in the iAPX-432. In Proceedings of ASPLOS-I, pages 117-131. ACM Press, 1982.
28. S. Staniford, V. Paxson, and N. Weaver. How to Own the Internet in Your Spare Time. In Proceedings of the USENIX Security Symposium, pages 149-167, 2002.
29. G. E. Suh, D. Clarke, B. Gassend, M. van Dijk, and S. Devadas. AEGIS: Architecture for Tamper-Evident and Tamper-Resistant Processing. In Proceedings of the 17th Annual ACM International Conference on Supercomputing, Mar. 2003.
30. G. E. Suh, J. Lee, and S. Devadas. Secure Program Execution via Dynamic Information Flow Tracking. In Proceedings of ASPLOS-XI, Oct. 2004.
31. Trusted Computing Group. TCG Specification: Architecture Overview. 2004.
32. N. Tuck, B. Calder, and G. Varghese. Hardware and binary modification support for code pointer protection from buffer overflow. In The 37th International Symposium on Microarchitecture, 2004.
33. vnunet news. Microsoft stamps out XP buffer overflows.
34. C. Weaver, J. Emer, and S. S. Mukherjee. Techniques to reduce the soft error rate of a high-performance microprocessor. In Proceedings of the 31st annual International Symposium on Computer Architecture, page 264. IEEE Computer Society, 2004.
35. E. Witchel, J. Cates, and K. Asanović. Mondrian Memory Protection. In Proceedings of ASPLOS-X, Oct 2002.
36. J. Yang, Y. Zhang, and L. Gao. Fast secure processor for inhibiting software piracy and tampering. In Proceedings of the 36th Annual IEEE/ACM International Symposium on Microarchitecture, page 351. IEEE Computer Society, 2003.