TY - JOUR
T1 - Random CFI (RCFI)
T2 - Efficient Fine-Grained Control-Flow Integrity through Random Verification
AU - Park, Moon Chan
AU - Lee, Dong Hoon
N1 - Funding Information:
This research was funded by the Penerimaan Negara Bukan Pajak (PNBP) Faculty of Mathematics and Natural Sciences, Sriwijaya University, Indonesia , Number: 0132/UN9.FMIPA/TU.SK/2019 . The researchers thank to Ahmad, Geothani Batubara, Akhmad Prasetyo, and Raga Maherlsa for their assistance in conducting research. The researcher also thanks the reviewer for the assistance in improvement the manuscript.
Publisher Copyright:
© 1968-2012 IEEE.
PY - 2021/5/1
Y1 - 2021/5/1
N2 - In theory, Control-Flow Integrity (CFI) is considered a principled solution against control-data attacks. However, most fine-grained CFI schemes that ensure such high security suffer from significant performance overhead. Existing practical implementations have been proposed to overcome this performance overhead problem, but they have proven unable to guarantee high security because development of these implementations has focused on only improving performance, at the expense of the security guarantee. Even though it is important for CFI schemes to provide both high security and low performance overhead, existing research on CFI is limited either by way of performance or security guarantee. We propose a new approach of verification method in fine-grained CFI to achieve these two goals. Our scheme performs selective and random verifications for certain branches rather than all branches, and thus, can reduce performance overhead. We show improved performance by evaluating our proof-of-concept implementation on SPEC CPU 2017. In addition, we also show that our scheme does not significantly sacrifice the security guarantee of fine-grained CFI by analyzing the structure of existing control-data attack exploits, which were collected from real-world exploits DB and related literature.
AB - In theory, Control-Flow Integrity (CFI) is considered a principled solution against control-data attacks. However, most fine-grained CFI schemes that ensure such high security suffer from significant performance overhead. Existing practical implementations have been proposed to overcome this performance overhead problem, but they have proven unable to guarantee high security because development of these implementations has focused on only improving performance, at the expense of the security guarantee. Even though it is important for CFI schemes to provide both high security and low performance overhead, existing research on CFI is limited either by way of performance or security guarantee. We propose a new approach of verification method in fine-grained CFI to achieve these two goals. Our scheme performs selective and random verifications for certain branches rather than all branches, and thus, can reduce performance overhead. We show improved performance by evaluating our proof-of-concept implementation on SPEC CPU 2017. In addition, we also show that our scheme does not significantly sacrifice the security guarantee of fine-grained CFI by analyzing the structure of existing control-data attack exploits, which were collected from real-world exploits DB and related literature.
KW - Control-data attack
KW - control-flow hijacking
KW - control-flow integrity (CFI)
UR - http://www.scopus.com/inward/record.url?scp=85104086052&partnerID=8YFLogxK
U2 - 10.1109/TC.2020.2995838
DO - 10.1109/TC.2020.2995838
M3 - Article
AN - SCOPUS:85104086052
SN - 0018-9340
VL - 70
SP - 733
EP - 745
JO - IEEE Transactions on Computers
JF - IEEE Transactions on Computers
IS - 5
M1 - 9097354
ER -