Adaptive Just-In-Time Code Diversification

Jangda, Abhinav; Mishra, Mohit; Sutter, Bjorn De

doi:10.1145/2808475.2808487

Cited by 10 publications

(8 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In adaptive just-in-time (JIT) code diversification (Jangda et al, 2015), the code is recompiled frequently by a Java bytecode JIT compiler during the execution of the program to generate multiple diversified variants for the target program. Its goal is to reduce the time frame between the two critical timestamps: time of leakage of useful address space information and time of use of the leaked information in an exploit.…”

Section: Software Transformationsmentioning

confidence: 99%

“…As mentioned in Section 3, attack surface can be viewed as a set of all the properties of the system that can be used for attack. Attack surface reduction means reducing some of the properties, and the usual way to achieve attack surface reduction is to repair some vulnera- (Azab et al, 2011), end-to-end software randomly chosen to replace the current candidate) diversity (Christodorescu et al, 2011), practical software diversification (Pappas et al, 2013), SEM (Cui and Stolfo, 2011), proactive obfuscation (Roeder and Schneider, 2010), HMS (le Goues et al, 2013), NOMAD (Vikram et al, 2013), adaptive JIT code diversification (Jangda et al, 2015), OF-RHM (Jafarian et al, 2012), spatio-temporal address mutation (Jafarian et al, 2014), and MOTAG (Jia et al, 2013) Choosing by rotation (the next candidate is chosen SCIT (Bangalore and Sood, 2009), MAS (Huang and Ghosh, by turns) 2011), and MORE (Thompson et al, 2014) Choosing according to function (the next MT6D (Dunlop et al, 2011), RHM (Al-Shaer et al, 2013), candidate is calculated by a function) MTD-MANETs (Albanese et al, 2013), the SDN shuffle approach (MacFarland and Shue, 2015), the SDN-based frequency-minimal MTD approach (Debroy et al, 2016), and RPAH (Luo et al, 2015) Choosing according to game theory (this method Manadhata (2013), Zhu and Başar (2013), is used to provide a general method for attack and Carter et al (2014) surface shifting, and there can be multiple specific strategies under the guidance of this method) Choosing according to the attack behavior observed Spatio-temporal address mutation (Jafarian et al, 2014), and or perceived (the next candidate is chosen to TALENT (Okhravi et al, 2011b) meet some specific security requirements) * (The next candidate is chosen based on an MTD MTD strategy for cloud-based services (Peng et al, 2014) service deployment strategy proposed by authors) * (The selection probability for each candidate OF-RHM (Jafarian et al, 2012) directly relates to the weight that is associated with each candidate based on a certain criterion) * (The next candidate (new configuration) is chosen…”

Section: Attack Surface Reductionmentioning

confidence: 99%

“…JIT code diversification (Jangda et al, 2015), MTD strategy for cloud-based services (Peng et al, 2014), MTD-MANETs (Albanese et al, 2013), MT6D (Dunlop et al, 2011), and RHM (Al-Shaer et al, 2013) Triggering by anomalous events (the mechanism ChameleonSoft (Azab et al, 2011), TALENT (Okhravi et al, 2011a), changes its candidate when there is an attack MAS (Huang and Ghosh, 2011), and MOTAG (Jia et al, 2013) or when the security level is decreased) * (Limited timeliness is triggered by user request) NOMAD (Vikram et al, 2013) * (Limited timeliness is achieved by the SDNA (Yackoski et al, 2011) occurrence of address rewriting when packets enter or exit the OS) * (Limited timeliness is achieved by setting the SDN shuffle approach (MacFarland and Shue, 2015) TTL value) * (Limited timeliness is achieved based on the SDN-based frequency-minimal MTD approach statistical attack pattern and probability) (Debroy et al, 2016) * Belonging to some other ways ment, while in le Goues et al (2013) it is the time when attack attempts are thwarted and detected. The third aspect is the vulnerabilities repaired by them respectively.…”

Section: Attack Surface Reductionmentioning

confidence: 99%

See 2 more Smart Citations

Moving target defense: state of the art and characteristics

Cai

Wang

et al. 2016

Frontiers Inf Technol Electronic Eng

View full text Add to dashboard Cite

Moving target defense (MTD) has emerged as one of the game-changing themes to alter the asymmetric situation between attacks and defenses in cyber-security. Numerous related works involving several facets of MTD have been published. However, comprehensive analyses and research on MTD are still absent. In this paper, we present a survey on MTD technologies to scientifically and systematically introduce, categorize, and summarize the existing research works in this field. First, a new security model is introduced to describe the changes in the traditional defense paradigm and security model caused by the introduction of MTD. A function-and-movement model is provided to give a panoramic overview on different perspectives for understanding the existing MTD research works. Then a systematic interpretation of published literature is presented to describe the state of the art of the three main areas in the MTD field, namely, MTD theory, MTD strategy, and MTD evaluation. Specifically, in the area of MTD strategy, the common characteristics shared by the MTD strategies to improve system security and effectiveness are identified and extrapolated. Thereafter, the methods to implement these characteristics are concluded. Moreover, the MTD strategies are classified into three types according to their specific goals, and the necessary and sufficient conditions of each type to create effective MTD strategies are then summarized, which are typically one or more of the aforementioned characteristics. Finally, we provide a number of observations for the future direction in this field, which can be helpful for subsequent researchers.

show abstract

Section: Software Transformationsmentioning

confidence: 99%

Section: Attack Surface Reductionmentioning

confidence: 99%

Section: Attack Surface Reductionmentioning

confidence: 99%

See 1 more Smart Citation

Moving target defense: state of the art and characteristics

Cai

Wang

et al. 2016

Frontiers Inf Technol Electronic Eng

View full text Add to dashboard Cite

show abstract

“…These techniques are implemented by [3], [6], [7] in compiler. [9], [8] and [29] implements these techniques in virtual machines and JIT. [10], [11] uses static binary re-writing to implement above techniques.…”

Section: Related Workmentioning

confidence: 99%

“…These implementations show that diversification has a positive impact on software security with negligible performance overhead. [8] relies on static NOP insertion techniques while [29] has shown that even less performance overhead could be achieved using dynamic adaptive NOP insertion.…”

Section: Related Workmentioning

confidence: 99%

libmask: Protecting browser JIT engines from the devil in the constants

Abhinav

Mishra

Baudry

2016

2016 14th Annual Conference on Privacy, Security and Trust (PST)

Self Cite

View full text Add to dashboard Cite

Abstract-JavaScript (JS) engines are virtual machines that execute JavaScript code. These engines find frequent application in web browsers like Google Chrome, Mozilla Firefox, Microsoft Internet Explorer and Apple Safari. Since, the purpose of a JS engine is to produce executable code, it cannot be run in a non-executable environment, and is susceptible to attacks like Just-in-Time (JIT) Spraying, which embed return-oriented programming (ROP) gadgets in arithmetic or logical instructions as immediate offsets. This paper introduces libmask, a JIT compiler extension to prevent the JIT-spraying attacks as an effective alternative to XOR based constant blinding. libmask transforms constants into global variables and marks the memory area for these global variables as read only. Hence, any constant is referred to by a memory address making exploitation of arithmetic and logical instructions more difficult. Further, these memory addresses are randomized to further harden the security. The scheme has been implemented and evaluated as a librddy extension to Google V8 scripting engine with optimizations that contain performance overhead and make libmask a feasible approach. We demonstrate that libmask masks all the constants in JITed code, and effectively raise the bar for JIT-spray and JIT-ROP attacks. The average overhead incurred upon memory is less than 300 kilobytes, while in most benchmarks the memory overhead is less than 10 KB. The average performance overhead observed with optimizations measures is 5.31%. Further, this new approach shows a modest performance improvement over currently deployed constant blinding technique in Google V8.

show abstract