Modular protections against non-control data attacks
Author(s): Schlesinger, Cole; Pattabiraman, Karthik; Swamy, Nikhil; Walker, David; Zorn, Benjamin
DownloadTo refer to this page use:
http://arks.princeton.edu/ark:/88435/pr1r840Full metadata record
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Schlesinger, Cole | - |
| dc.contributor.author | Pattabiraman, Karthik | - |
| dc.contributor.author | Swamy, Nikhil | - |
| dc.contributor.author | Walker, David | - |
| dc.contributor.author | Zorn, Benjamin | - |
| dc.date.accessioned | 2021-10-08T19:48:25Z | - |
| dc.date.available | 2021-10-08T19:48:25Z | - |
| dc.date.issued | 2014 | en_US |
| dc.identifier.citation | Schlesinger, Cole, Karthik Pattabiraman, Nikhil Swamy, David Walker, and Benjamin Zorn. "Modular protections against non-control data attacks." Journal of Computer Security 22, no. 5 (2014): 699-742. doi:10.3233/JCS-140502 | en_US |
| dc.identifier.issn | 0926-227X | - |
| dc.identifier.uri | https://www.cs.princeton.edu/~dpw/papers/yarra-jcs.pdf | - |
| dc.identifier.uri | http://arks.princeton.edu/ark:/88435/pr1r840 | - |
| dc.description.abstract | This paper introduces YARRA, a conservative extension to C to protect applications from non-control data attacks. YARRA programmers specify their data integrity requirements by declaring critical data types and ascribing these critical types to important data structures. YARRA guarantees that such critical data is only written through pointers with the given static type. Any attempt to write to critical data through a pointer with an invalid type (perhaps because of a buffer overrun) is detected dynamically. We formalize YARRA’s semantics and prove the soundness of a program logic designed for use with the language. A key contribution is to show that YARRA's semantics are strong enough to support sound local reasoning and the use of a frame rule, even across calls to unknown, unverified code. We evaluate a prototype implementation of a compiler and runtime system for YARRA by using it to harden four common server applications against known non-control data vulnerabilities. We show that YARRA successfully defends the applications against these attacks. In our initial experiments, we find that the performance impact of YARRA is small, provided the amount of critical data is small and the application is not compute intensive. | en_US |
| dc.format.extent | 699 - 742 | en_US |
| dc.language.iso | en_US | en_US |
| dc.relation.ispartof | Journal of Computer Security | en_US |
| dc.rights | Author's manuscript | en_US |
| dc.title | Modular protections against non-control data attacks | en_US |
| dc.type | Journal Article | en_US |
| dc.identifier.doi | 10.3233/JCS-140502 | - |
| pu.type.symplectic | http://www.symplectic.co.uk/publications/atom-terms/1.0/journal-article | en_US |
Files in This Item:
| File | Description | Size | Format | |
|---|---|---|---|---|
| ModularProtectionNonControlDataAttacks.pdf | 544.45 kB | Adobe PDF | View/Download |
Items in OAR@Princeton are protected by copyright, with all rights reserved, unless otherwise indicated.