CFI CaRE: Hardware-Supported Call and Return Enforcement for Commercial Microcontrollers
作者: Thomas Nyman , Jan-Erik Ekberg , Lucas Davi , N. Asokan
DOI: 10.1007/978-3-319-66332-6_12
关键词:
摘要: With the increasing scale of deployment Internet Things (IoT), concerns about IoT security have become more urgent. In particular, memory corruption attacks play a predominant role as they allow remote compromise devices. Control-flow integrity (CFI) is promising and generic defense technique against these attacks. However, given nature deployments, existing protection mechanisms for traditional computing environments (including CFI) need to be adapted setting. this paper, we describe challenges enabling CFI on microcontroller (MCU) based We then present CaRE, first interrupt-aware scheme low-end MCUs. CaRE uses novel way protecting metadata by leveraging TrustZone-M extensions introduced in ARMv8-M architecture. Its binary instrumentation approach preserves layout target MCU software, allowing pre-built bare-metal code protected CaRE. our implementation Cortex-M Prototyping System demonstrate that secure while imposing acceptable performance impact.
springer.com
arxiv.org
sci-hub.se 参考文章(34)
Barton P. Miller, Somesh Jha, Jonathon T. Giffin, Efficient Context-Sensitive Intrusion Detection. network and distributed system security symposium. ,(2004)
Anthony Van Herrewege, Frank Piessens, Job Noorman, Pieter Agten, Ingrid Verbauwhede, Raoul Strackx, Christophe Huygens, Wilfried Daniels, Bart Preneel, Sancus: low-cost trustworthy extensible networked devices with a zero-software trusted computing base usenix security symposium. pp. 479- 494 ,(2013)
Antonio Barresi, David Wagner, Thomas R. Gross, Mathias Payer, Nicolas Carlini, Control-flow bending: on the effectiveness of control-flow integrity usenix security symposium. pp. 161- 176 ,(2015)
Tzi-cker Chiueh, Manish Prasad, A Binary Rewriting Defense Against Stack based Buffer Overflow Attacks. usenix annual technical conference. pp. 211- 224 ,(2003)
Edward W. Felten, Hovav Shacham, J. Alex Halderman, Brian Kantor, Ariel J. Feldman, Stephen Checkoway, Can DREs provide long-lasting security? the case of return-oriented programming and the AVC advantage conference on electronic voting technology workshop on trustworthy elections. pp. 6- 6 ,(2009)
Barton P. Miller, Somesh Jha, Jonathon T. Giffin, Detecting Manipulated Remote Call Streams usenix security symposium. pp. 61- 79 ,(2002)
Thurston H.Y. Dang, Petros Maniatis, David Wagner, The Performance Cost of Shadow Stacks and Stack Canaries computer and communications security. pp. 555- 566 ,(2015) , 10.1145/2714576.2714635
Lucas Davi, Ahmad-Reza Sadeghi, Marcel Winandy, ROPdefender Proceedings of the 6th ACM Symposium on Information, Computer and Communications Security - ASIACCS '11. pp. 40- 51 ,(2011) , 10.1145/1966913.1966920
Ruan de Clercq, Frank Piessens, Dries Schellekens, Ingrid Verbauwhede, Secure interrupts on low-end microcontrollers application-specific systems, architectures, and processors. pp. 147- 152 ,(2014) , 10.1109/ASAP.2014.6868649
Stephen Checkoway, Lucas Davi, Alexandra Dmitrienko, Ahmad-Reza Sadeghi, Hovav Shacham, Marcel Winandy, Return-oriented programming without returns computer and communications security. pp. 559- 572 ,(2010) , 10.1145/1866307.1866370