Efficient and effective buffer overflow protection on ARM processors

Authors:
Raoul Strackx;Yves Younan;Pieter Philippaerts;Frank Piessens
Affiliations:
Katholieke Universiteit Leuven, Heverlee, Belgium;Katholieke Universiteit Leuven, Heverlee, Belgium;Katholieke Universiteit Leuven, Heverlee, Belgium;Katholieke Universiteit Leuven, Heverlee, Belgium
Venue:
WISTP'10 Proceedings of the 4th IFIP WG 11.2 international conference on Information Security Theory and Practices: security and Privacy of Pervasive Systems and Smart Devices
Year:
2010

Citing 11
Cited 0

Register Packing: Exploiting Narrow-Width Operands for Reducing Register File Pressure

Proceedings of the 37th annual IEEE/ACM International Symposium on Microarchitecture
CCured: type-safe retrofitting of legacy software

ACM Transactions on Programming Languages and Systems (TOPLAS)
MiBench: A free, commercially representative embedded benchmark suite

WWC '01 Proceedings of the Workload Characterization, 2001. WWC-4. 2001 IEEE International Workshop
Extended Protection against Stack Smashing Attacks without Performance Loss

ACSAC '06 Proceedings of the 22nd Annual Computer Security Applications Conference
Detecting format string vulnerabilities with type qualifiers

SSYM'01 Proceedings of the 10th conference on USENIX Security Symposium - Volume 10
Address obfuscation: an efficient approach to combat a board range of memory error exploits

SSYM'03 Proceedings of the 12th conference on USENIX Security Symposium - Volume 12
StackGuard: automatic adaptive detection and prevention of buffer-overflow attacks

SSYM'98 Proceedings of the 7th conference on USENIX Security Symposium - Volume 7
Righting Software

IEEE Software
Breaking the memory secrecy assumption

Proceedings of the Second European Workshop on System Security
Filter-resistant code injection on ARM

Proceedings of the 16th ACM conference on Computer and communications security
Handbook of Information and Communication Security

Handbook of Information and Communication Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Although many countermeasures have been developed for desktop and server environments, buffer overflows still pose a big threat. The same approach can be used to target mobile devices. Unfortunately, they place more severe limitations on countermeasures. Not only are the performance requirements at least as important, memory and power consumption need to be considered as well. Moreover, processors used in mobile devices generally are equipped with a different instruction set. Therefore countermeasures may not be ported easily. Multistack is an effective countermeasure against stack-based buffer overflows. It protects applications by using multiple stacks to separate possible attack targets from possible sources. However, its performance overhead will no longer be negligible on the ARMv7 platform (widely used on mobile devices) and it wastes too much memory, making it too costly for mobile applications. We propose 3 methods to reduce memory overhead up to 28% with only a 3.91% performance overhead.