Fine-Grained Control-Flow Integrity Based on Points-to Analysis for CPS
Joint Authors
Jin, Hai
Qiang, Weizhong
Wang, Shizhen
Zhong, Jiangying
Source
Security and Communication Networks
Issue
Vol. 2018, Issue 2018 (31 Dec. 2018), pp.1-11, 11 p.
Publisher
Hindawi Publishing Corporation
Publication Date
2018-10-17
Country of Publication
Egypt
No. of Pages
11
Main Subjects
Information Technology and Computer Science
Abstract EN
A cyber-physical system (CPS) is known as a mix system composed of computational and physical capabilities.
The fast development of CPS brings new security and privacy requirements.
Code reuse attacks that affect the correct behavior of software by exploiting memory corruption vulnerabilities and reusing existing code may also be threats to CPS.
Various defense techniques are proposed in recent years as countermeasures to emerging code reuse attacks.
However, they may fail to fulfill the security requirement well because they cannot protect the indirect function calls properly when it comes to dynamic code reuse attacks aiming at forward edges of control-flow graph (CFG).
In this paper, we propose P-CFI, a fine-grained control-flow integrity (CFI) method, to protect CPS against memory-related attacks.
We use points-to analysis to construct the legitimate target set for every indirect call cite and check whether the target of the indirect call cite is in the legitimate target set at runtime.
We implement a prototype of P-CFI on LLVM and evaluate both its functionality and performance.
Security analysis proves that P-CFI can mitigate the dynamic code reuse attack based on forward edges of CFG.
Performance evaluation shows that P-CFI can protect CPS from dynamic code reuse attacks with trivial time overhead between 0.1% and 3.5% (Copyright © 2018 John Wiley & Sons, Ltd.).
American Psychological Association (APA)
Qiang, Weizhong& Wang, Shizhen& Jin, Hai& Zhong, Jiangying. 2018. Fine-Grained Control-Flow Integrity Based on Points-to Analysis for CPS. Security and Communication Networks،Vol. 2018, no. 2018, pp.1-11.
https://search.emarefa.net/detail/BIM-1214041
Modern Language Association (MLA)
Qiang, Weizhong…[et al.]. Fine-Grained Control-Flow Integrity Based on Points-to Analysis for CPS. Security and Communication Networks No. 2018 (2018), pp.1-11.
https://search.emarefa.net/detail/BIM-1214041
American Medical Association (AMA)
Qiang, Weizhong& Wang, Shizhen& Jin, Hai& Zhong, Jiangying. Fine-Grained Control-Flow Integrity Based on Points-to Analysis for CPS. Security and Communication Networks. 2018. Vol. 2018, no. 2018, pp.1-11.
https://search.emarefa.net/detail/BIM-1214041
Data Type
Journal Articles
Language
English
Notes
Includes bibliographical references
Record ID
BIM-1214041