Language:
English
繁體中文
Help
圖資館首頁
Login
Back
Switch To:
Labeled
|
MARC Mode
|
ISBD
Novel techniques in recovering, embe...
~
Lin, Yan.
Novel techniques in recovering, embedding, and enforcing policies for control-flow integrity
Record Type:
Electronic resources : Monograph/item
Title/Author:
Novel techniques in recovering, embedding, and enforcing policies for control-flow integrityby Yan Lin.
Author:
Lin, Yan.
Published:
Cham :Springer International Publishing :2021.
Description:
xiii, 95 p. :ill., digital ;24 cm.
Contained By:
Springer Nature eBook
Subject:
Computer security.
Online resource:
https://doi.org/10.1007/978-3-030-73141-0
ISBN:
9783030731410$q(electronic bk.)
Novel techniques in recovering, embedding, and enforcing policies for control-flow integrity
Lin, Yan.
Novel techniques in recovering, embedding, and enforcing policies for control-flow integrity
[electronic resource] /by Yan Lin. - Cham :Springer International Publishing :2021. - xiii, 95 p. :ill., digital ;24 cm. - Information security and cryptography,1619-7100. - Information security and cryptography..
Introduction -- Literature Review -- When Function Signature Recovery Meets Compiler Optimization -- Control-Flow Carrying Code -- Control-Flow Integrity Enforcement with Dynamic Code Optimization -- Conclusion -- Bibliography.
Control-Flow Integrity (CFI) is an attractive security property with which most injected and code-reuse attacks can be defeated, including advanced attacking techniques like return-oriented programming. CFI extracts a control-flow graph (CFG) for a given program, with checks inserted before indirect branch instructions. Before executed during runtime, the checks consult the CFG to ensure that the indirect branch is allowed to reach the intended target. Hence, any sort of control-flow hijacking can be prevented. This concise volume proposes novel solutions to handle the fundamental components of CFI enforcement: accurately recovering the policy (CFG); embedding the CFI policy securely; and efficiently enforcing the CFI policy. Addressing the first component, the book systematically studies two methods that recover CFI policy based on function signature matching at the binary level, then offers a unique rule- and heuristic-based mechanism to more accurately recover function signature. To embed CFI policy securely, the book advocates a new platform that encodes the policy into the machine instructions directly without relying on consulting any read-only data structure. Finally, the work prescribes a mature dynamic-code-optimization platform called DynamoRIO to enforce the policy when needed. Key features: Provides deep understanding of Control-Flow Integrity Offers new insights on the relationship between function signature and compiler optimization Demonstrates how CFI can be more efficient than Data Execution Prevention This focused, distinctive volume will appeal to researchers, scientists, lecturers, as well as postgraduates with a background in binary analysis. Libraries, practitioners, and professionals will also benefit, depending on their missions and programs. Yan Lin is at the School of Computing and Information Systems, Singapore Management University. Her extensive foundational studies have focused on the area of cybersecurity, and her current research focuses on software security and system security.
ISBN: 9783030731410$q(electronic bk.)
Standard No.: 10.1007/978-3-030-73141-0doiSubjects--Topical Terms:
184416
Computer security.
LC Class. No.: QA76.9.A25 / L55 2021
Dewey Class. No.: 005.8
Novel techniques in recovering, embedding, and enforcing policies for control-flow integrity
LDR
:03370nmm a2200349 a 4500
001
597597
003
DE-He213
005
20210430131755.0
006
m d
007
cr nn 008maaau
008
211019s2021 sz s 0 eng d
020
$a
9783030731410$q(electronic bk.)
020
$a
9783030731403$q(paper)
024
7
$a
10.1007/978-3-030-73141-0
$2
doi
035
$a
978-3-030-73141-0
040
$a
GP
$c
GP
041
0
$a
eng
050
4
$a
QA76.9.A25
$b
L55 2021
072
7
$a
UR
$2
bicssc
072
7
$a
COM053000
$2
bisacsh
072
7
$a
UR
$2
thema
072
7
$a
UTN
$2
thema
082
0 4
$a
005.8
$2
23
090
$a
QA76.9.A25
$b
L735 2021
100
1
$a
Lin, Yan.
$3
890955
245
1 0
$a
Novel techniques in recovering, embedding, and enforcing policies for control-flow integrity
$h
[electronic resource] /
$c
by Yan Lin.
260
$a
Cham :
$b
Springer International Publishing :
$b
Imprint: Springer,
$c
2021.
300
$a
xiii, 95 p. :
$b
ill., digital ;
$c
24 cm.
490
1
$a
Information security and cryptography,
$x
1619-7100
505
0
$a
Introduction -- Literature Review -- When Function Signature Recovery Meets Compiler Optimization -- Control-Flow Carrying Code -- Control-Flow Integrity Enforcement with Dynamic Code Optimization -- Conclusion -- Bibliography.
520
$a
Control-Flow Integrity (CFI) is an attractive security property with which most injected and code-reuse attacks can be defeated, including advanced attacking techniques like return-oriented programming. CFI extracts a control-flow graph (CFG) for a given program, with checks inserted before indirect branch instructions. Before executed during runtime, the checks consult the CFG to ensure that the indirect branch is allowed to reach the intended target. Hence, any sort of control-flow hijacking can be prevented. This concise volume proposes novel solutions to handle the fundamental components of CFI enforcement: accurately recovering the policy (CFG); embedding the CFI policy securely; and efficiently enforcing the CFI policy. Addressing the first component, the book systematically studies two methods that recover CFI policy based on function signature matching at the binary level, then offers a unique rule- and heuristic-based mechanism to more accurately recover function signature. To embed CFI policy securely, the book advocates a new platform that encodes the policy into the machine instructions directly without relying on consulting any read-only data structure. Finally, the work prescribes a mature dynamic-code-optimization platform called DynamoRIO to enforce the policy when needed. Key features: Provides deep understanding of Control-Flow Integrity Offers new insights on the relationship between function signature and compiler optimization Demonstrates how CFI can be more efficient than Data Execution Prevention This focused, distinctive volume will appeal to researchers, scientists, lecturers, as well as postgraduates with a background in binary analysis. Libraries, practitioners, and professionals will also benefit, depending on their missions and programs. Yan Lin is at the School of Computing and Information Systems, Singapore Management University. Her extensive foundational studies have focused on the area of cybersecurity, and her current research focuses on software security and system security.
650
0
$a
Computer security.
$3
184416
650
0
$a
Computer programming.
$3
181992
650
1 4
$a
Systems and Data Security.
$3
274481
650
2 4
$a
Data Structures and Information Theory.
$3
825714
650
2 4
$a
Programming Techniques.
$3
274470
650
2 4
$a
Programming Languages, Compilers, Interpreters.
$3
274102
650
2 4
$a
Continuous Optimization.
$3
558846
710
2
$a
SpringerLink (Online service)
$3
273601
773
0
$t
Springer Nature eBook
830
0
$a
Information security and cryptography.
$3
567250
856
4 0
$u
https://doi.org/10.1007/978-3-030-73141-0
950
$a
Computer Science (SpringerNature-11645)
based on 0 review(s)
ALL
電子館藏
Items
1 records • Pages 1 •
1
Inventory Number
Location Name
Item Class
Material type
Call number
Usage Class
Loan Status
No. of reservations
Opac note
Attachments
000000196327
電子館藏
1圖書
電子書
EB QA76.9.A25 L735 2021 2021
一般使用(Normal)
On shelf
0
1 records • Pages 1 •
1
Multimedia
Multimedia file
https://doi.org/10.1007/978-3-030-73141-0
Reviews
Add a review
and share your thoughts with other readers
Export
pickup library
Processing
...
Change password
Login