完整後設資料紀錄
DC 欄位語言
dc.contributor.authorChen, Chung-Kuanen_US
dc.contributor.authorChen, Shang-Kueien_US
dc.contributor.authorShieh, Shiuhpyng Winstonen_US
dc.date.accessioned2019-05-02T00:26:49Z-
dc.date.available2019-05-02T00:26:49Z-
dc.date.issued2018-01-01en_US
dc.identifier.isbn978-1-5386-5790-4en_US
dc.identifier.urihttp://hdl.handle.net/11536/151755-
dc.description.abstractControl flow integrity (CFI) is a promising defense mechanism for controlling hijacking attacks. In most situations, CFI prevents the control flow transfer from hijacking by the adversary. However, the over-permissible transfer problem remains a major issue in most CFI systems. By taking advantage of this problem, an adversary can still hijack control flows to the code not designed by the original programmer but intended for execution by the adversary. To eliminate over-permissible transfer, we propose transfer target analysis for the CFI system. With value set analysis and concolic execution, the transfer target analysis is able to construct the precise control flow graph. Given the fine-grained policy, over-permissible transfer can be prohibited. To save memory, the Bloom filter-based policy database is established to store a large number of policies in a compact data structure with low false positive rate. The evaluation uses benign programs from the SPEC CPU2006 benchmarks and the malign programs from the RIPE benchmark. The result shows that all the benign programs can execute normally but all the malign programs are blocked.en_US
dc.language.isoen_USen_US
dc.subjectvulnerabilityen_US
dc.subjectcontrol flow integrityen_US
dc.subjectcontrol-flow hijacken_US
dc.subjectsymbolic executionen_US
dc.titleMitigating Over-Permissible Transfer for Control Flow Integrityen_US
dc.typeProceedings Paperen_US
dc.identifier.journal2018 IEEE CONFERENCE ON DEPENDABLE AND SECURE COMPUTING (DSC)en_US
dc.citation.spage148en_US
dc.citation.epage155en_US
dc.contributor.department資訊工程學系zh_TW
dc.contributor.departmentDepartment of Computer Scienceen_US
dc.identifier.wosnumberWOS:000462054900017en_US
dc.citation.woscount0en_US
顯示於類別:會議論文