Control Flow and Code Integrity for COTS Binaries Control-Flow Integrity (CFI) has been recognized as an important low-level security property. Its enforcement can defeat most injected and existing code attacks, including those based on Return-Oriented Programming (ROP). Previous implem... M Zhang...
Control Flow Integrity for COTS Binaries 是一篇发表在USENIX‘13会议上的论文 。本文提出了一种技术可以将CFI运用到去除了信息的x86/Linux 二进制程序中,文中的实验是第一个能够将CFI技术运用到复杂的共享库(glibc)中的工作。 Abstract CFI作为一种重要的底层安全属性,能够抵御大多数注入和已有的攻击,包括ROP。以...
Control flow integrity for COTS binaries. In Proceedings of the 22nd USENIX Security Symposium (USENIX Security 13), Washington, DC, USA, 14–16 August 2013; pp. 337–352. [Google Scholar] Pappas, V.; Polychronakis, M.; Keromytis, A.D. Transparent ROP exploit mitigation using indirect ...