网络与信息安全学报2024,Vol.10Issue(5):107-118,12.DOI:10.11959/j.issn.2096-109x.2024070
基于软硬件结合的控制流完整性保护技术
Control-flow integrity technology based on the combination of software and hardware
摘要
Abstract
For shadow stack,balancing security and performance was difficult,and the forward CFI(control-flow integrity)scheme implemented by software was too expensive and difficult to be deployed in practice.A hybrid CFI scheme based on software and hardware integration,named SHCFI(control-flow integrity based on the combi-nation of software and hardware),was proposed.Decompilation was undergone by the program using a binary re-writer to generate an intermediate representation,and various transfer instruction types were identified.For the pro-tection of backward control flow,a novel parallel shadow stack scheme was introduced,featuring encrypted return addresses.This involved XOR encryption of return addresses on the stack using random numbers,with the en-crypted results stored securely in a shadow stack located at a fixed offset on the original stack.During function re-turns,addresses in the shadow stack underwent XOR decryption,and the decrypted results served as the actual re-turn addresses.For forward control flow protection,the hardware ENDBRANCH state machine instruction was uti-lized to mark the target addresses of indirect transfer instructions.At runtime,legitimacy checks were applied to these target addresses,thereby reducing performance overhead.Experimental results demonstrated that programs fortified with SHCFI effectively defended against code reuse attacks,exhibiting favorable runtime overhead.关键词
软件多样化/控制流完整性/软硬件结合/代码重用攻击Key words
software diversity/control-flow integrity/combination of software and hardware/code-reuse attack分类
信息技术与安全科学引用本文复制引用
梁浩,何本伟,王庆丰,程国振,马海龙..基于软硬件结合的控制流完整性保护技术[J].网络与信息安全学报,2024,10(5):107-118,12.基金项目
国家自然科学基金(62002383) The National Natural Science Foundation of China(62002383) (62002383)
