Zero-Sum Defender: Fast and Space-Efficient Defense against Return-Oriented Programming Attacks
Summary :
Recently, return-oriented programming (ROP) attacks have been rapidly increasing. In this letter, we introduce a fast and space-efficient defense technique, called zero-sum defender, that can respond against general ROP attacks. Our technique generates additional codes, at compile time, just before return instructions to check whether the execution has been abused by ROP attacks. We achieve very low runtime overhead with very small increase in file size. In our experimental results, performance overhead is 1.7%, and file size overhead is 4.5%.
- Publication
- IEICE TRANSACTIONS on Fundamentals Vol.E97-A No.1 pp.303-305
- Publication Date
- 2014/01/01
- Publicized
- Online ISSN
- 1745-1337
- DOI
- 10.1587/transfun.E97.A.303
- Type of Manuscript
- Special Section LETTER (Special Section on Cryptography and Information Security)
- Category
Authors
Jeehong KIM
Sungkyunkwan University
Inhyeok KIM
Sungkyunkwan University
Changwoo MIN
Samsung Electronics
Young Ik EOM
Sungkyunkwan University
Keyword
Latest Issue
Copyrights notice of machine-translated contents
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Cite this
Copy
Jeehong KIM, Inhyeok KIM, Changwoo MIN, Young Ik EOM, "Zero-Sum Defender: Fast and Space-Efficient Defense against Return-Oriented Programming Attacks" in IEICE TRANSACTIONS on Fundamentals,
vol. E97-A, no. 1, pp. 303-305, January 2014, doi: 10.1587/transfun.E97.A.303.
Abstract: Recently, return-oriented programming (ROP) attacks have been rapidly increasing. In this letter, we introduce a fast and space-efficient defense technique, called zero-sum defender, that can respond against general ROP attacks. Our technique generates additional codes, at compile time, just before return instructions to check whether the execution has been abused by ROP attacks. We achieve very low runtime overhead with very small increase in file size. In our experimental results, performance overhead is 1.7%, and file size overhead is 4.5%.
URL: https://global.ieice.org/en_transactions/fundamentals/10.1587/transfun.E97.A.303/_p
Copy
@ARTICLE{e97-a_1_303,
author={Jeehong KIM, Inhyeok KIM, Changwoo MIN, Young Ik EOM, },
journal={IEICE TRANSACTIONS on Fundamentals},
title={Zero-Sum Defender: Fast and Space-Efficient Defense against Return-Oriented Programming Attacks},
year={2014},
volume={E97-A},
number={1},
pages={303-305},
abstract={Recently, return-oriented programming (ROP) attacks have been rapidly increasing. In this letter, we introduce a fast and space-efficient defense technique, called zero-sum defender, that can respond against general ROP attacks. Our technique generates additional codes, at compile time, just before return instructions to check whether the execution has been abused by ROP attacks. We achieve very low runtime overhead with very small increase in file size. In our experimental results, performance overhead is 1.7%, and file size overhead is 4.5%.},
keywords={},
doi={10.1587/transfun.E97.A.303},
ISSN={1745-1337},
month={January},}
Copy
TY - JOUR
TI - Zero-Sum Defender: Fast and Space-Efficient Defense against Return-Oriented Programming Attacks
T2 - IEICE TRANSACTIONS on Fundamentals
SP - 303
EP - 305
AU - Jeehong KIM
AU - Inhyeok KIM
AU - Changwoo MIN
AU - Young Ik EOM
PY - 2014
DO - 10.1587/transfun.E97.A.303
JO - IEICE TRANSACTIONS on Fundamentals
SN - 1745-1337
VL - E97-A
IS - 1
JA - IEICE TRANSACTIONS on Fundamentals
Y1 - January 2014
AB - Recently, return-oriented programming (ROP) attacks have been rapidly increasing. In this letter, we introduce a fast and space-efficient defense technique, called zero-sum defender, that can respond against general ROP attacks. Our technique generates additional codes, at compile time, just before return instructions to check whether the execution has been abused by ROP attacks. We achieve very low runtime overhead with very small increase in file size. In our experimental results, performance overhead is 1.7%, and file size overhead is 4.5%.
ER -
English
