[SW Security] CRCount: Pointer Invalidation with Reference Counting to Mitigate Use-after-free in Legacy C/C++, Network and Distributed System Security Symposium (NDSS), Feb. 2019

CRCount: Pointer Invalidation with Reference Counting to Mitigate Use-after-free in Legacy C/C++, Network and Distributed System Security Symposium (NDSS) 2019


Jangseop Shin, Donghyun Kwon, Jiwon Seo, Yeongpil Cho, Yunheung Paek


본 논문은 C/C++ 프로그램에 대한 공격으로 많이 사용되는 Use-after-free 취약점에 대한 방어 기법을 제안한다. 이를 위해 컴파일 단계에서 코드를 수정하여 Heap object에 대한 Reference Counting을 수행하여 이를 통해 Heap object의 해제를 dangling pointer가 없어질 때까지 지연시킨다. 또한 실험을 통해 이 approach의 효율성을 보여주었다.

0
0

International Papers

SW Security µXOM: Efficient eXecute-Only Memory on ARM Cortex-M (to appear), USENIX Security Symposium (Security), August 2019
AI Security DADE: a fast data anomaly detection engine for kernel integrity monitoring, The Journal of Supercomputing, Aug 2019
AI Security Hawkware: Network Intrusion Detection based on Behavior Analysis with ANNs on an IoT Device, Design Automation Conference WIP, Jun 2019
SW Security Finding Kernel Race Bugs through Fuzzing, IEEE Symposium on Security and Privacy (Oakland), May 2019
HW Security KI-Mon ARM: A Hardware-assisted Event-triggered Monitoring Platform for Mutable Kernel Object, IEEE Transactions on Dependable and Secure Computing, Mar 2019
SW Security PrOS: Light-weight Privatized Secure Oses in ARM TrustZone (accepted), IEEE Transactions on Mobile Computing, Mar 2019
HW Security RiskiM: Towards Complete Kernel Protection with Hardware Support, DATE, Mar 2019
AI Security Real-Time Anomalous Branch Behavior Detection with a GPU-inspired Engine for Machine Learning Models, DATE, Mar 2019
SW Security Safe and Efficient Implementation of Security System on ARM using Intra-Level Privilege Separation, ACM Transactions on Privacy and Security, Feb 2019
SW Security CRCount: Pointer Invalidation with Reference Counting to Mitigate Use-after-free in Legacy C/C++, Network and Distributed System Security Symposium (NDSS), Feb. 2019
SW Security OBFSCURO: A Commodity Obfuscation Engine on Intel SGX, Network and Distributed System Security Symposium (NDSS), Feb. 2019
Application Specific Architectures Developing a custom DSP for vision based human computer interaction applications, Multimedia Tools and Applications, Nov 2018
HW Security Design of a Generic Security Interface for RISC-V Processors and its Applications, 2018 International SoC Design Conference (ISOCC), Nov 2018
HW Security Hardware Assisted Randomization of Data, International Symposium on Research in Attacks, Intrusions and Defenses (RAID), Sep 2018
HW Security A Dynamic Per-context Verification of Kernel Address Integrity from External Monitors, Computers & Security, August 2018
SW Security VM-CFI : Control-Flow Integrity for Virtual Machine Kernel using Intel PT, DTS, Jul 2018
HW Security Hypernel: A Hardware-Assisted Framework for Kernel Protection without Nested Paging, Annual Design Automation Conference (DAC), Jun 2018
AI Security An SoC Architecture for Learning-Based Online Anomaly Detection on ARM, Design Automation Conference WIP, Jun 2018
AI Security Mimicry Resilient Program Behavior Modeling with LSTM based Branch Models, DEEP LEARNING AND SECURITY WORKSHOP, May2018
SW Security Obliviate: A Data Oblivious Filesystem for Intel SGX, Network and Distributed System Security Symposium (NDSS), Feb 2018