HardScope: Hardening Embedded Systems Against Data-Oriented Attacks

dc.contributorAalto-yliopistofi
dc.contributorAalto Universityen
dc.contributor.authorNyman, Thomasen_US
dc.contributor.authorDessouky, Ghadaen_US
dc.contributor.authorZeitouni, Shazaen_US
dc.contributor.authorLehikoinen, Aaroen_US
dc.contributor.authorPaverd, Andrewen_US
dc.contributor.authorAsokan, N.en_US
dc.contributor.authorSadeghi, Ahmad-Rezaen_US
dc.contributor.departmentDepartment of Computer Scienceen
dc.contributor.groupauthorAdj. Prof Asokan N. groupen
dc.contributor.groupauthorHelsinki Institute for Information Technology (HIIT)en
dc.contributor.organizationTechnische Universität Darmstadten_US
dc.contributor.organizationDepartment of Computer Scienceen_US
dc.date.accessioned2019-11-15T08:10:33Z
dc.date.available2019-11-15T08:10:33Z
dc.date.issued2019-06-02en_US
dc.description| openaire: EC/H2020/643964/EU//SUPERCLOUD
dc.description.abstractMemory-unsafe programming languages like C and C++ leave many (embedded) systems vulnerable to attacks like control-flow hijacking. However, defenses against control-flow attacks, such as (fine-grained) randomization or control-flow integrity are in-effective against data-oriented attacks and more expressive Data-oriented Programming (DOP) attacks that bypass state-of-the-art defenses. We propose run-time scope enforcement (RSE), a novel approach that efficiently mitigates all currently known DOP attacks by enforcing compile-time memory safety constraints like variable visibility rules at run-time. We present Hardscope, a proof-of-concept implementation of hardware-assisted RSE for RISC-V, and show it has a low performance overhead of 3.2% for embedded benchmarks.en
dc.description.versionPeer revieweden
dc.format.extent6
dc.format.mimetypeapplication/pdfen_US
dc.identifier.citationNyman, T, Dessouky, G, Zeitouni, S, Lehikoinen, A, Paverd, A, Asokan, N & Sadeghi, A-R 2019, HardScope: Hardening Embedded Systems Against Data-Oriented Attacks . in Proceedings of the 56th Annual Design Automation Conference 2019, DAC 2019 ., 63, Proceedings - Design Automation Conference, ACM, Design Automation Conference, Las Vegas, Nevada, United States, 02/06/2019 . https://doi.org/10.1145/3316781.3317836en
dc.identifier.doi10.1145/3316781.3317836en_US
dc.identifier.isbn978-1-7281-2426-1
dc.identifier.isbn978-1-4503-6725-7
dc.identifier.issn0738-100X
dc.identifier.otherPURE UUID: 105ecb92-f226-4e16-bcf3-37a2377b2615en_US
dc.identifier.otherPURE ITEMURL: https://research.aalto.fi/en/publications/105ecb92-f226-4e16-bcf3-37a2377b2615en_US
dc.identifier.otherPURE LINK: https://arxiv.org/abs/1705.10295en_US
dc.identifier.otherPURE FILEURL: https://research.aalto.fi/files/38543245/hardscope_authorversion.pdfen_US
dc.identifier.urihttps://aaltodoc.aalto.fi/handle/123456789/41234
dc.identifier.urnURN:NBN:fi:aalto-201911156239
dc.language.isoenen
dc.publisherACM/IEEE
dc.relationinfo:eu-repo/grantAgreement/EC/H2020/643964/EU//SUPERCLOUDen_US
dc.relation.ispartofDesign Automation Conferenceen
dc.relation.ispartofseriesProceedings of the 56th Annual Design Automation Conference 2019, DAC 2019en
dc.relation.ispartofseriesProceedings - Design Automation Conferenceen
dc.rightsopenAccessen
dc.titleHardScope: Hardening Embedded Systems Against Data-Oriented Attacksen
dc.typeA4 Artikkeli konferenssijulkaisussafi
dc.type.versionacceptedVersion

Files