{"title":"多变量执行环境下的数据随机化","authors":"Dongil Hwang, Jangseop Shin, Jeehwan Kim, Y. Paek","doi":"10.1109/ISOCC47750.2019.9027747","DOIUrl":null,"url":null,"abstract":"The majority of embedded software is written in C/C++ language, which suffers from an abundance of memory vulnerabilities which open gate to attackers to infiltrate into the computer system. Multi-variant execution environment (MVEE) has been proposed to utilize multi-core embedded processors to provide efficient protection against attackers utilizing memory vulnerabilities. The security provided by MVEE depends on the degree of randomization between the variants. Existing MVEEs typically randomize the data layout between the variants, which can fail to detect some attacks based on relative memory errors. In this paper, we propose to apply data space randomization (DSR) to the variants of MVEE to strengthen the security provided by the MVEE. Experiments show that it adds reasonable performance overheads.","PeriodicalId":113802,"journal":{"name":"2019 International SoC Design Conference (ISOCC)","volume":"31 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Data Randomization for Multi-Variant Execution Environment\",\"authors\":\"Dongil Hwang, Jangseop Shin, Jeehwan Kim, Y. Paek\",\"doi\":\"10.1109/ISOCC47750.2019.9027747\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The majority of embedded software is written in C/C++ language, which suffers from an abundance of memory vulnerabilities which open gate to attackers to infiltrate into the computer system. Multi-variant execution environment (MVEE) has been proposed to utilize multi-core embedded processors to provide efficient protection against attackers utilizing memory vulnerabilities. The security provided by MVEE depends on the degree of randomization between the variants. Existing MVEEs typically randomize the data layout between the variants, which can fail to detect some attacks based on relative memory errors. In this paper, we propose to apply data space randomization (DSR) to the variants of MVEE to strengthen the security provided by the MVEE. Experiments show that it adds reasonable performance overheads.\",\"PeriodicalId\":113802,\"journal\":{\"name\":\"2019 International SoC Design Conference (ISOCC)\",\"volume\":\"31 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-10-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2019 International SoC Design Conference (ISOCC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ISOCC47750.2019.9027747\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 International SoC Design Conference (ISOCC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISOCC47750.2019.9027747","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Data Randomization for Multi-Variant Execution Environment
The majority of embedded software is written in C/C++ language, which suffers from an abundance of memory vulnerabilities which open gate to attackers to infiltrate into the computer system. Multi-variant execution environment (MVEE) has been proposed to utilize multi-core embedded processors to provide efficient protection against attackers utilizing memory vulnerabilities. The security provided by MVEE depends on the degree of randomization between the variants. Existing MVEEs typically randomize the data layout between the variants, which can fail to detect some attacks based on relative memory errors. In this paper, we propose to apply data space randomization (DSR) to the variants of MVEE to strengthen the security provided by the MVEE. Experiments show that it adds reasonable performance overheads.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
