• KSII Transactions on Internet and Information Systems
    Monthly Online Journal (eISSN: 1976-7277)

Control Flow Checking at Virtual Edges

Vol. 11, No. 1, January 29, 2017
10.3837/tiis.2017.01.021, Download Paper (Free):

Abstract

Dynamically checking the integrity of software at run-time is always a hot and difficult spot for trusted computing. Control-flow integrity is a basic and important safety property of software integrity. Many classic and emerging security attacks who introduce illegal control-flow to applications can cause unpredictable behaviors of computer-based systems. In this paper, we present a software-based approach to checking violation of control flow integrity at run-time. This paper proposes a high-performance and low-overhead software control flow checking solution, control flow checking at virtual edges (CFCVE). CFCVE assigns a unique signature to each basic block and then inserts a virtual vertex into each edge at compile time. This together with insertion of signature updating instructions and checking instructions into corresponding vertexes and virtual vertexes. Control flow faults can be detected by comparing the run-time signature with the saved one at compile time. Our experimental results show that CFCVE incurs only 10.61% performance overhead on average for several C benchmark programs and the average undetected error rate is only 9.29%. Compared with previous techniques, CFCVE has the characteristics of both high fault coverage and low memory and performance overhead.


Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from December 1st, 2015)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article

[IEEE Style]
L. Liu, L. Ci, W. Liu and H. Yang, "Control Flow Checking at Virtual Edges," KSII Transactions on Internet and Information Systems, vol. 11, no. 1, pp. 396-413, 2017. DOI: 10.3837/tiis.2017.01.021.

[ACM Style]
LiPing Liu, LinLin Ci, Wei Liu, and Hui Yang. 2017. Control Flow Checking at Virtual Edges. KSII Transactions on Internet and Information Systems, 11, 1, (2017), 396-413. DOI: 10.3837/tiis.2017.01.021.