| 题名 | RetTag: Hardware-Assisted Return Address Integrity on RISC-V |
| 作者 | |
| 通讯作者 | Ning,Zhenyu |
| DOI | |
| 发表日期 | 2022-04-05
|
| 会议名称 | 15th European Workshop on Systems Security (EuroSec)
|
| 会议录名称 | |
| 页码 | 50-56
|
| 会议日期 | APR 05-08, 2022
|
| 会议地点 | null,Rennes,FRANCE
|
| 出版地 | 1601 Broadway, 10th Floor, NEW YORK, NY, UNITED STATES
|
| 出版者 | |
| 摘要 | Memory-corruption-based return address hijacking, such as Return-oriented Programming (ROP), is a prevalent attack technique that compromises the program's control flow integrity. So far, software-based defenses against these attacks either introduce heavy performance overhead or trade-off security for performance. Meanwhile, some hardware-Assisted defense mechanisms are not practical for large-scale deployment due to additional requirements of hardware features and flaws caused by complicated design. In this paper, we present RetTag, a hardware-Assisted and crypto-based defense scheme on RISC-V architecture that leverages Pointer Authentication Code (PAC) embedded into the unused bits of function return address to ensure return address integrity. We extend RISC-V ISA with Return Address Authentication (RAA) instructions to generate the PAC efficiently. We integrate RetTag into the mainstream compilers GCC and LLVM to help developers transparently employ the defense and implement a prototype of RetTag on the Rocket emulator and FPGA development board to demonstrate its effectiveness by detecting various ROP attacks. Moreover, the performance evaluation shows that RetTag only introduces 0.11% performance overhead on NBench and 7.69% on Coremark. |
| 关键词 | |
| 学校署名 | 第一
; 通讯
|
| 语种 | 英语
|
| 相关链接 | [Scopus记录] |
| 收录类别 | |
| 资助项目 | National Natural Science Foundation of China["62102175","62002151"]
|
| WOS研究方向 | Computer Science
|
| WOS类目 | Computer Science, Information Systems
; Computer Science, Theory & Methods
|
| WOS记录号 | WOS:000927582300008
|
| EI入藏号 | 20221611992648
|
| EI主题词 | Codes (symbols)
; Computer hardware
; Economic and social effects
; Hardware security
; Network security
; Rockets
|
| EI分类号 | Rockets and Missiles:654.1
; Computer Systems and Equipment:722
; Computer Software, Data Handling and Applications:723
; Data Processing and Image Processing:723.2
; Social Sciences:971
|
| Scopus记录号 | 2-s2.0-85128423428
|
| 来源库 | Scopus
|
| 引用统计 |
被引频次[WOS]:5
|
| 成果类型 | 会议论文 |
| 条目标识符 | http://sustech.caswiz.com/handle/2SGJ60CL/333612 |
| 专题 | 工学院_斯发基斯可信自主研究院 工学院_计算机科学与工程系 |
| 作者单位 | 1.Research Institute of Trustworthy Autonomous Systems and Compass Lab,Southern University of Science and Technology,China 2.College of Computer Science and Technology,National University of Defense Technology,China |
| 第一作者单位 | 斯发基斯可信自主系统研究院 |
| 通讯作者单位 | 斯发基斯可信自主系统研究院 |
| 第一作者的第一单位 | 斯发基斯可信自主系统研究院 |
| 推荐引用方式 GB/T 7714 |
Wang,Yu,Wu,Jinting,Yue,Tai,et al. RetTag: Hardware-Assisted Return Address Integrity on RISC-V[C]. 1601 Broadway, 10th Floor, NEW YORK, NY, UNITED STATES:ASSOC COMPUTING MACHINERY,2022:50-56.
|
| 条目包含的文件 | ||||||
| 文件名称/大小 | 文献类型 | 版本类型 | 开放类型 | 使用许可 | 操作 | |
| RetTag 3517208.35237(681KB) | 会议论文 | -- | 开放获取 | CC BY-NC-SA | 浏览 | |
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
;
修改评论