Visible to the public Multilayer ROP Protection Via Microarchitectural Units Available in Commodity Hardware

TitleMultilayer ROP Protection Via Microarchitectural Units Available in Commodity Hardware
Publication TypeConference Paper
Year of Publication2019
AuthorsTymburibá, M., Sousa, H., Pereira, F.
Conference Name2019 49th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN)
ISBN Number978-1-7281-0057-9
KeywordsArchitecture, Benchmark testing, CFI, commodity hardware, composability, Computer architecture, Hardware, Human Behavior, human factors, Layers, LBR, lightweight security techniques, microarchitectural units, microarchitecture, multilayer protection approach, multilayer ROP protection, multilayer system, Nonhomogeneous media, Program processors, pubcrawl, RAS, Resiliency, return oriented programming, Return-oriented Programming attacks, ROP, rop attacks, Runtime, Scalability, security of data, Web browsers

This paper presents a multilayer protection approach to guard programs against Return-Oriented Programming (ROP) attacks. Upper layers validate most of a program's control flow at a low computational cost; thus, not compromising runtime. Lower layers provide strong enforcement guarantees to handle more suspicious flows; thus, enhancing security. Our multilayer system combines techniques already described in the literature with verifications that we introduce in this paper. We argue that modern versions of x86 processors already provide the microarchitectural units necessary to implement our technique. We demonstrate the effectiveness of our multilayer protection on a extensive suite of benchmarks, which includes: SPEC CPU2006; the three most popular web browsers; 209 benchmarks distributed with LLVM and four well-known systems shown to be vulnerable to ROP exploits. Our experiments indicate that we can protect programs with almost no overhead in practice, allying the good performance of lightweight security techniques with the high dependability of heavyweight approaches.

Citation Keytymburiba_multilayer_2019