poster

Poster: control-flow integrity for smartphones

Authors:

Lucas Davi,

Alexandra Dmitrienko,

Ahmad-Reza SadeghiAuthors Info & Claims

CCS '11: Proceedings of the 18th ACM conference on Computer and communications security

Pages 749 - 752

https://doi.org/10.1145/2046707.2093484

Published: 17 October 2011 Publication History

Get Access

Abstract

Despite extensive research over the last two decades, runtime attacks on software are still prevalent. Recently, smartphones, of which millions are in use today, have become an attractive target for adversaries. However, existing solutions are either ad-hoc or limited in their effectiveness. In this poster, we present a general countermeasure against runtime attacks on smartphone platforms. Our approach makes use of control-flow integrity (CFI), and tackles unique challenges of the ARM architecture and smartphone platforms. Our framework and implementation is efficient, since it requires no access to source code, performs CFI enforcement on-the-fly during runtime, and is compatible to memory randomization and code signing/encryption. We chose Apple iPhone for our reference implementation, because it has become an attractive target for runtime attacks. Our performance evaluation on a real iOS device demonstrates that our implementation does not induce any notable overhead when applied to popular iOS applications.

References

[1]

M. Abadi, M. Budiu, U. Erlingsson, and J. Ligatti. Control-Flow Integrity: Principles, Implementations, and Applications. In ACM CCS, 2005.

Digital Library

Google Scholar

[2]

Aleph One. Smashing the Stack for Fun and Profit. Phrack Magazine, 49(14), 1996.

Google Scholar

[3]

S. Checkoway, L. Davi, A. Dmitrienko, A.-R. Sadeghi, H. Shacham, and M. Winandy. Return-oriented Programming Without Returns. In ACM CCS, 2010.

Digital Library

Google Scholar

[4]

T. Chiueh and F.-H. Hsu. RAD: A Compile-Time Solution to Buffer Overflow Attacks. In ICDCS, 2001.

Digital Library

Google Scholar

[5]

comex. http://www.jailbreakme.com//#.

Google Scholar

[6]

M. Egele, C. Kruegel, E. Kirda, and G. Vigna. PiOS: Detecting Privacy Leaks in iOS Applications. In NDSS, 2011.

Google Scholar

[7]

R. Hund, T. Holz, and F. C. Freiling. Return-Oriented Rootkits: Bypassing Kernel Code Integrity Protection Mechanisms. In USENIX Security Symposium, 2009.

Digital Library

Google Scholar

[8]

M. Keith. Android 2.0--2.1 Reverse Shell Exploit, 2010. http://www.exploit-db.com/exploits/15423/.

Google Scholar

[9]

T. Kornau. Return Oriented Programming for the ARM Architecture. Master's thesis, Ruhr-University Bochum, 2009.

Google Scholar

[10]

H. Shacham. The Geometry of Innocent Flesh on the Bone: Return-into-libc Without Function Calls (on the x86). In ACM CCS, 2007.

Digital Library

Google Scholar

[11]

R.-P. Weinmann and V. Iozzo. Ralf-Philipp Weinmann & Vincenzo Iozzo own the iPhone at PWN2OWN, 2010.

Google Scholar

Cited By

View all

Wanniarachchi AGamage C(2019)RECSRF: Novel Technique to Evaluate Program Security using Dynamic Disassembly of Machine Instructions2019 21st International Conference on Advanced Communication Technology (ICACT)10.23919/ICACT.2019.8701914(545-551)Online publication date: Feb-2019
https://doi.org/10.23919/ICACT.2019.8701914
Rocha BConti MEtalle SCrispo B(2013)Hybrid Static-Runtime Information Flow and Declassification EnforcementIEEE Transactions on Information Forensics and Security10.1109/TIFS.2013.22677988:8(1294-1305)Online publication date: 1-Aug-2013
https://dl.acm.org/doi/10.1109/TIFS.2013.2267798

Index Terms

Poster: control-flow integrity for smartphones
1. Security and privacy
  1. Systems security
    1. Operating systems security

Recommendations

PSiOS: bring your own privacy & security to iOS devices
ASIA CCS '13: Proceedings of the 8th ACM SIGSAC symposium on Information, computer and communications security

Apple iOS is one of the most popular mobile operating systems. As its core security technology, iOS provides application sandboxing but assigns a generic sandboxing profile to every third-party application. However, recent attacks and incidents with ...
Control-flow restrictor: compiler-based CFI for iOS
ACSAC '13: Proceedings of the 29th Annual Computer Security Applications Conference

Runtime attacks that exploit software vulnerabilities are still an important concern nowadays. Even smartphone operating systems such as Apple's iOS are affected by such attacks since the system is implemented in Objective-C, a programming language that ...
Poster: Control-Flow Integrity in Low-end Embedded Devices
CCS '23: Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security

Embedded, smart, and IoT devices are increasingly popular in numerous everyday settings. Since lower-end devices have the most strict cost constraints, they tend to have few, if any, security features. This makes them attractive targets for exploits and ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

CCS '11: Proceedings of the 18th ACM conference on Computer and communications security

October 2011

742 pages

ISBN:9781450309486

DOI:10.1145/2046707

General Chair:
Yan Chen
Northwestern University, USA
,
Program Chairs:
George Danezis
Microsoft Research Cambridge, UK
,
Vitaly Shmatikov
University of Texas at Austin, USA

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 17 October 2011

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Poster

Conference

CCS'11

Sponsor:

SIGSAC

CCS'11: the ACM Conference on Computer and Communications Security

October 17 - 21, 2011

Illinois, Chicago, USA

Acceptance Rates

CCS '11 Paper Acceptance Rate 60 of 429 submissions, 14%;

Overall Acceptance Rate 1,261 of 6,999 submissions, 18%

Upcoming Conference

CCS '25

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 13 - 17, 2025

Taipei , Taiwan

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

2
Total Citations
View Citations
339
Total Downloads

Downloads (Last 12 months)13
Downloads (Last 6 weeks)1

Reflects downloads up to 11 Dec 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Wanniarachchi AGamage C(2019)RECSRF: Novel Technique to Evaluate Program Security using Dynamic Disassembly of Machine Instructions2019 21st International Conference on Advanced Communication Technology (ICACT)10.23919/ICACT.2019.8701914(545-551)Online publication date: Feb-2019
https://doi.org/10.23919/ICACT.2019.8701914
Rocha BConti MEtalle SCrispo B(2013)Hybrid Static-Runtime Information Flow and Declassification EnforcementIEEE Transactions on Information Forensics and Security10.1109/TIFS.2013.22677988:8(1294-1305)Online publication date: 1-Aug-2013
https://dl.acm.org/doi/10.1109/TIFS.2013.2267798

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

PSiOS: bring your own privacy & security to iOS devices

Control-flow restrictor: compiler-based CFI for iOS

Poster: Control-Flow Integrity in Low-end Embedded Devices