Shadow-Heap: Preventing Heap-based Memory Corruptions by Metadata Validation

Proceedings of the 2020 European Interdisciplinary Cybersecurity Conference Pub Date : 2020-11-18 DOI:10.1145/3424954.3424956

Johannes Bouché, Lukas Atkinson, Martin Kappes

{"title":"Shadow-Heap: Preventing Heap-based Memory Corruptions by Metadata Validation","authors":"Johannes Bouché, Lukas Atkinson, Martin Kappes","doi":"10.1145/3424954.3424956","DOIUrl":null,"url":null,"abstract":"In the past, stack smashing attacks and buffer overflows were some of the most insidious data-dependent bugs leading to malicious code execution or other unwanted behavior in the targeted application. Since reliable mitigations such as fuzzing or static code analysis are readily available, attackers have shifted towards heap-based exploitation techniques. Therefore, robust methods are required which ensure application security even in the presence of such intrusions, but existing mitigations are not yet adequate in terms of convenience, reliability, and performance overhead. We present a novel method to prevent heap corruption at runtime: by maintaining a copy of heap metadata in a shadow-heap and verifying the heap integrity upon each call to the underlying allocator we can detect most heap metadata manipulation techniques. The results demonstrate that Shadow-Heap is a practical mitigation approach, that our prototypical implementation only requires reasonable overhead due to a user-configurable performance-security tradeoff, and that existing programs can be protected without recompilation.","PeriodicalId":166844,"journal":{"name":"Proceedings of the 2020 European Interdisciplinary Cybersecurity Conference","volume":"75 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-11-18","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 2020 European Interdisciplinary Cybersecurity Conference","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3424954.3424956","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

In the past, stack smashing attacks and buffer overflows were some of the most insidious data-dependent bugs leading to malicious code execution or other unwanted behavior in the targeted application. Since reliable mitigations such as fuzzing or static code analysis are readily available, attackers have shifted towards heap-based exploitation techniques. Therefore, robust methods are required which ensure application security even in the presence of such intrusions, but existing mitigations are not yet adequate in terms of convenience, reliability, and performance overhead. We present a novel method to prevent heap corruption at runtime: by maintaining a copy of heap metadata in a shadow-heap and verifying the heap integrity upon each call to the underlying allocator we can detect most heap metadata manipulation techniques. The results demonstrate that Shadow-Heap is a practical mitigation approach, that our prototypical implementation only requires reasonable overhead due to a user-configurable performance-security tradeoff, and that existing programs can be protected without recompilation.

查看原文本刊更多论文

Shadow-Heap:通过元数据验证防止基于堆的内存损坏

在过去，栈破坏攻击和缓冲区溢出是一些最隐蔽的与数据相关的错误，会导致在目标应用程序中执行恶意代码或其他不需要的行为。由于诸如模糊测试或静态代码分析等可靠的缓解方法很容易获得，攻击者已经转向基于堆的利用技术。因此，需要健壮的方法来确保应用程序的安全性，即使存在这样的入侵，但是现有的缓解措施在便利性、可靠性和性能开销方面还不够。我们提出了一种在运行时防止堆损坏的新方法:通过在影子堆中维护堆元数据的副本，并在每次调用底层分配器时验证堆完整性，我们可以检测大多数堆元数据操作技术。结果表明，Shadow-Heap是一种实用的缓解方法，由于用户可配置的性能安全权衡，我们的原型实现只需要合理的开销，并且无需重新编译即可保护现有程序。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 2020 European Interdisciplinary Cybersecurity Conference

自引率

0.00%

发文量