Fast and practical instruction-set randomization for commodity systems

Portokalidis, Georgios; Keromytis, Angelos D.

doi:10.1145/1920261.1920268

Cited by 58 publications

(42 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Of course, changing the order of instruction storing must ensure that the topology order of execution is maintained or the results are unchanged. [30] presented the basic-block granularity randomization, [31] presented the basic-block's internal instruction granularity randomization.…”

Section: Address Space Layout Randomizationmentioning

confidence: 99%

Eternal War in Software Security: A Survey of Control Flow Protection

Tang¹,

Ying²,

Wang³

et al. 2017

Proceedings of the 2016 7th International Conference on Education, Management, Computer and Medicine (EMCM 2016)

View full text Add to dashboard Cite

Abstract. Software security is the cornerstone of computer system security. Among all the elements consisting of software security, control flow protection is undoubtedly the most important one. Once the process's control flow is hijacked, attacker can manipulate it to implement a variety of malicious acts and break through other protection mechanisms which ultimately lead to the control of the entire system. This paper will present a series of offensive and defensive technologies about Control Flow Protection which have been developed in the past three decades. The paper will elaborate the causes of their emergence, explain the principle of their implement, and compare the security and performance of their method. Additionally, it will introduce some other technologies applied in the progress of attack and mitigation, such as program analysis, virtual memory management, machine learning and so on. Through those above illustration and analysis, the paper summarizes three primary suggestions which not only can enlighten security engineers on the design of new methods, but also can help general developers to estimate their software's robustness, practicability and performance.

show abstract

Section: Address Space Layout Randomizationmentioning

confidence: 99%

Eternal War in Software Security: A Survey of Control Flow Protection

Tang¹,

Ying²,

Wang³

et al. 2017

Proceedings of the 2016 7th International Conference on Education, Management, Computer and Medicine (EMCM 2016)

View full text Add to dashboard Cite

show abstract

“…Portokalidis et al [15] use a similar approach to RISE, based on the Intel PIN dynamic binary rewriting tool. They use a database of keys, to randomize every loaded code image in a different way.…”

Section: F Related Permutation Workmentioning

confidence: 99%

Improving Resilience by Deploying Permuted Code onto Physically Unclonable Unique Processors

Aßmuth¹,

Cockshott

Kipke

et al. 2016

2016 Cybersecurity and Cyberforensics Conference (CCC)

View full text Add to dashboard Cite

Abstract-Industrial control systems (ICSs) are, at present, extremely vulnerable to cyber attack because they are homogenous and interconnected. Mitigating solutions are urgently required because systems breaches can feasibly lead to fatalities. In this paper we propose the deployment of permuted code onto Physically Unclonable Unique Processors in order to resist common cyber attacks. We present our proposal and explain how it would resist attacks from hostile agents.

show abstract

“…However, lately systems' security have been highly enhanced by introducing different solutions [2,3] either at operating system or at application layer works, malware detection as a part of it is still an on-going and challenging research problem. Various research works [4,5] have shown that not only malicious software (malware) can get access to private information but also goodware might try to invade to users' digital space as it is considered the main asset for digital business in this new era, and consequently can threaten their private sphere.…”

Section: Introductionmentioning

confidence: 99%

Towards a Mobile Malware Detection Framework with the Support of Machine Learning

Geneiatakis

Baldini

Fovino

et al. 2018

Communications in Computer and Information Science

View full text Add to dashboard Cite

Abstract. Several policies initiatives around the digital economy stress on one side the centrality of smartphones and mobile applications, and on the other call for attention on the threats to which this ecosystem is exposed to. Lately, a plethora of related works rely on machine learning algorithms to classify whether an application is malware or not, using data that can be extracted from the application itself with high accuracy. However, different parameters can influence machine learning effectiveness. Thus, in this paper we focus on validating the efficiency of such approaches in detecting malware for Android platform, and identifying the optimal characteristics that should be consolidated in any similar approach. To do so, we built a machine learning solution based on features that can be extracted by static analysis of any Android application, such as activities, services, broadcasts, receivers, intent categories, APIs, and permissions. The extracted features are analyzed using statistical analysis and machine learning algorithms. The performance of different sets of features are investigated and compared. The analysis shows that under an optimal configuration an accuracy up to 97% can be obtained.

show abstract

Fast and practical instruction-set randomization for commodity systems

Cited by 58 publications

References 23 publications

Eternal War in Software Security: A Survey of Control Flow Protection

Eternal War in Software Security: A Survey of Control Flow Protection

Improving Resilience by Deploying Permuted Code onto Physically Unclonable Unique Processors

Towards a Mobile Malware Detection Framework with the Support of Machine Learning

Contact Info

Product

Resources

About