LATCH: A Locality-Aware Taint CHecker
作者: Daniel Townley , Khaled N. Khasawneh , Dmitry Ponomarev , Nael Abu-Ghazaleh , Lei Yu
关键词:
摘要: We present LATCH (short for Locality-Aware Taint CHecker), a generalizable architecture optimizing dynamic information flow tracking (DIFT). exploits the observation that flows under DIFT exhibit strong temporal locality, with typical applications manipulating sensitive data during limited phases of computation. This property allows to monitor significant spans execution using lightweight, coarse-grained checks, invoking precise, computationally intensive logic only periods involve data. implements this policy without sacrificing accuracy DIFT. propose and evaluate three systems incorporating LATCH: S-LATCH accelerate software-based on single core; P-LATCH multicore DIFT, H-LATCH reduce architectural complexity hardware-based developed an FPGA prototype system, demonstrating its advantages come negligible impact power no effect processor cycle time.
acm.org
sci-hub.st 参考文章(54)
Erik Bosman, Asia Slowinska, Herbert Bos, Minemu: The World’s Fastest Taint Tracker Lecture Notes in Computer Science. pp. 1- 20 ,(2011) , 10.1007/978-3-642-23644-0_1
Christos Kozyrakis, Hari Kannan, Michael Dalton, Real-world buffer overflow protection for userspace & kernelspace usenix security symposium. pp. 395- 410 ,(2008)
William Enck, Patrick McDaniel, Jaeyeon Jung, Byung-Gon Chun, Peter Gilbert, Anmol N. Sheth, Landon P. Cox, TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones operating systems design and implementation. pp. 393- 407 ,(2010) , 10.5555/1924943.1924971
Tyler Bletsch, Xuxian Jiang, Vince W. Freeh, Zhenkai Liang, Jump-oriented programming Proceedings of the 6th ACM Symposium on Information, Computer and Communications Security - ASIACCS '11. pp. 30- 40 ,(2011) , 10.1145/1966913.1966919
Andrey Chudnov, David A. Naumann, Inlined Information Flow Monitoring for JavaScript computer and communications security. pp. 629- 643 ,(2015) , 10.1145/2810103.2813684
Jinyong Lee, Ingoo Heo, Yongje Lee, Yunheung Paek, Efficient dynamic information flow tracking on a processor with core debug interface design automation conference. pp. 79- ,(2015) , 10.1145/2744769.2744830
David (Yu) Zhu, Jaeyeon Jung, Dawn Song, Tadayoshi Kohno, David Wetherall, TaintEraser ACM SIGOPS Operating Systems Review. ,vol. 45, pp. 142- 154 ,(2011) , 10.1145/1945023.1945039
Lucas Davi, Matthias Hanreich, Debayan Paul, Ahmad-Reza Sadeghi, Patrick Koeberl, Dean Sullivan, Orlando Arias, Yier Jin, HAFIX: hardware-assisted flow integrity extension design automation conference. pp. 74- ,(2015) , 10.1145/2744769.2744847
Alex Ho, Michael Fetterman, Christopher Clark, Andrew Warfield, Steven Hand, Practical taint-based protection using demand emulation Proceedings of the 2006 EuroSys conference on - EuroSys '06. ,vol. 40, pp. 29- 41 ,(2006) , 10.1145/1217935.1217939
Ingoo Heo, Minsu Kim, Yongje Lee, Changho Choi, Jinyong Lee, Brent Byunghoon Kang, Yunheung Paek, Implementing an Application-Specific Instruction-Set Processor for System-Level Dynamic Program Analysis Engines ACM Transactions on Design Automation of Electronic Systems. ,vol. 20, pp. 53- ,(2015) , 10.1145/2746238