Control-flow restrictor: Compiler-based CFI for iOS

ACM International Conference Proceeding Series

Volumn , Issue , 2013, Pages 309-318

  Pewny, Jannik ^a   Holz, Thorsten ^a  

^a RUHR UNIVERSITY BOCHUM   (Germany)

Author keywords

ARM; Compiler; Control flow integrity; IOS

Indexed keywords

ARM; COMPILER; CONTROL-FLOW INTEGRITIES; EMPIRICAL EVALUATIONS; IOS; PERFORMANCE IMPACT; PROTECTION TECHNIQUES; SOFTWARE VULNERABILITIES;

PROGRAM COMPILERS; SECURITY OF DATA; SECURITY SYSTEMS;

LOADING;

EID: 84893209370     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2523649.2523674     Document Type: Conference Paper

References (49)

1. M. Abadi, M. Budiu, U. Erlingsson, and J. Ligatti. Control-flow integrity. In ACM Conference on Computer and Communications Security (CCS), 2005.
2. P. Akritidis, C. Cadar, C. Raiciu, M. Costa, and M. Castro. Preventing Memory Error Exploits with WIT. In IEEE Symposium on Security and Privacy, 2008.
3. Aleph One. Smashing the Stack for Fun and Profit. Phrack, 7, Nov. 1996.
4. Anonymous. Posting of RC4-Algorithm, Sept. 1994.
5. Anonymous. Once upon a free(). Phrack, 57, 2001.
6. Apple. Exceptions in 64-Bit Executables, Feb. 2010.
7. Apple. App Store Review Guidelines, Apr. 2012.
8. Apple. iOS App Developing Guide, 2012.
9. Apple. The Objective-C Progamming Language, 2012.
10. Apple. Sample code for apps, Feb. 2013.
11. ARM Ltd. The ARM Processsor Architecure, 2012.
12. A. Baliga, P. Kamat, and L. Iftode. Lurking in the Shadows: Identifying Systemic Threats to Kernel Data. In IEEE Symposium on Security and Privacy, 2007.
13. P. Bellmer. Market share of Android, iOS and Bada rizes, May 2012.
14. Blexim. Basic Integer Overflows. Phrack, 60, 2002.
15. Clang Project. Clang - A C Language Family Frontend for LLVM, May 2012. v3.0.
16. Common Weakness Enumeration. CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition.
17. Common Weakness Enumeration. CWE-134: Uncontrolled Format String, May 2012.
18. C. Cowan, S. Beattie, J. Johansen, and P. Wagle. Pointguard™: Protecting Pointers From Buffer Overflow Vulnerabilities. In USENIX Security Symposium, 2003.
19. C. Cowan, C. Pu, D. Maier, H. Hinton, J. Walpole, P. Bakke, S. Beattie, A. Grier, P. Wagle, and Q. Zhang. StackGuard: Automatic adaptive detection and prevention of buffer-overflow attacks. In USENIX Security Symposium, 1998.
20. L. Davi, A. Dmitrienko, M. Egele, T. Fischer, T. Holz, R. Hund, S. Nürnberger, and A.-R. Sadeghi. MoCFI: A Framework to Mitigate Control-Flow Attacks on Smartphones. In Symposium on Network and Distributed System Security (NDSS), 2012.
21. Erlingsson and Schneider. IRM Enforcement of Java Stack Inspection. In IEEE Symposium on Security and Privacy, 2000.
22. U. Erlingsson, S. Valley, M. Abadi, M. Vrable, M. Budiu, and G. C. Necula. XFI: Software guards for system address spaces. In USENIX Symposium on Operating Systems Design and Implementation, 2006.
23. M. Gardner. Mathematical games - the fantastic combinations of john conwaýs new solitaire game life, Oct. 1970.
24. GCC. GCC Manual - Chapter 3.10, 2013.
25. E. Haugh. Testing C programs for buffer overflow vulnerabilities. In Symposium on Network and Distributed System Security (NDSS), 2003.
26. Hoare. Quicksort. The Computer Journal, 5, 1962.
27. A. Kapoulkine. pugixml: Light-weight, simple and fast XML parser for C++ with XPath support, May 2012.
28. M. Keller. Geek 101: What is jailbreaking?, Feb. 2012.
29. V. Kiriansky, D. Bruening, and S. P. Amarasinghe. Secure Execution via Program Shepherding. In USENIX Security Symposium, 2002.
30. C. Lattner. Address of Label and Indirect Branches in LLVM IR, Jan. 2010.
31. I. O. Levin. A Byte-oriented AES-256 implementation, 2009.
32. S. Loosemore, R. M. Stallman, R. McGrath, A. Oram, and U. Drepper. The GNU C Library, Chapter 24: Signal Handling, Aug. 2001. v0.10.
33. Low-Level Virtual Machine Project., Nov. 2011. v3.0.
34. Microsoft. The safeSEH-switch for Safe Exception Handling, 2005.
35. G. C. Necula. Proof-carrying Code. In ACM Symp. on Principles of Programming Languages, 1997.
36. F. Nidito. Exceptions in C with Longjmp and Setjmp, 2012.
37. J. Pincus and B. Baker. Beyond stack smashing: Recent advances in exploiting buffer overruns. In IEEE Symposium on Security and Privacy, July 2004.
38. J. V. R Gopalakrishna, E Spafford. Efficient intrusion detection using automaton inlining. In IEEE Symposium on Security and Privacy, 2005.
39. R. Roemer, E. Buchanan, H. Shacham, and S. Savage. Return-oriented programming: Systems, languages, and applications. ACM Transactions on Information and System Security (TISSEC), 15(1), 2012.
40. H. Shacham, E. jin Goh, N. Modadugu, B. Pfaff, and D. Boneh. On the effectiveness of address-space randomization. In ACM Conference on Computer and Communications Security (CCS), 2004.
41. Solar Designer. Non-executable stack patch.
42. Z. Wang and X. Jiang. HyperSafe: A lightweight approach to provide lifetime hypervisor control-flow integrity. In IEEE Symposium on Security and Privacy, 2010.
43. J. Wilander and M. Kamkar. A comparison of publicly available tools for dynamic buffer overflow prevention. In Symposium on Network and Distributed System Security (NDSS), 2003.
44. C. Wong. Buffer Overflow in Java, 2012.
45. F. Yamaguchi, M. Lottmann, and K. Rieck. Generalized vulnerability extrapolation using abstract syntax trees. In Annual Computer Security Applications Conference (ACSAC), 2012.
46. B. Yee, D. Sehr, G. Dardyk, J. B. Chen, R. Muth, T. Orm, S. Okasaka, N. Narula, N. Fullagar, and G. Inc. Native Client: A Sandbox for Portable, Untrusted x86 Native Code. In IEEE Symposium on Security and Privacy, 2009.
47. B. Zeng, G. Tan, and U. Erlingsson. Strato - A Retargetable Framework for Low-Level Inlined-Reference Monitors. In USENIX Security Symposium, 2013.
48. B. Zeng, G. Tan, and G. Morrisett. Combining control-flow integrity and static analysis for efficient and validated data sandboxing. In ACM Conference on Computer and Communications Security, 2011.
49. M. Zhang and R. Sekar. Control Flow Integrity for COTS Binaries. In USENIX Security Symposium, 2013.