Defending embedded systems against buffer overflow via hardware/software

Zili Shao; Qingfeng Zhuge; Yi He; Edwin H.M. Sha

doi:10.1109/CSAC.2003.1254340

Defending embedded systems against buffer overflow via hardware/software

Zili Shao, Qingfeng Zhuge, Yi He, Edwin H.M. Sha

Research output: Chapter in book / Conference proceeding › Conference article published in proceeding or book › Academic research › peer-review

38 Citations (Scopus)

Abstract

Buffer over-flow attacks have been causing serious security problems for decades. With more embedded systems networked, it becomes an important research problem to defend embedded systems against buffer overflow attacks. We propose the hardware/software address protection (HSAP) technique to solve this problem. We first classify buffer overflow attacks into two categories (stack smashing attacks and function pointer attacks) and then provide two corresponding defending strategies. In our technique, hardware boundary check method and function pointer XOR method are used to protect a system against stack smashing attacks and function pointer attacks, respectively. Although the focus of the HSAP technique is on embedded systems because of the availability of hardware support, we show that the HSAP technique is applied to any type of processors to defend against buffer overflow attacks. We use four classes of processors to illustrate that the applicability of our technique is independent of architectures. We experiment with our HSAP technique in ARM Evaluator-7T simulation development environments. The results show that our HSAP technique defends a system against more types of buffer overflow attacks with little overhead.

Original language	English
Title of host publication	Proceedings - 19th Annual Computer Security Applications Conference, ACSAC 2003
Publisher	IEEE Computer Society
Pages	352-361
Number of pages	10
Volume	2003-January
ISBN (Electronic)	0769520413
DOIs	https://doi.org/10.1109/CSAC.2003.1254340
Publication status	Published - 1 Jan 2003
Externally published	Yes
Event	19th Annual Computer Security Applications Conference, ACSAC 2003 - Las Vegas, United States Duration: 8 Dec 2003 → 12 Dec 2003

Conference

Conference	19th Annual Computer Security Applications Conference, ACSAC 2003
Country	United States
City	Las Vegas
Period	8/12/03 → 12/12/03

ASJC Scopus subject areas

Computer Networks and Communications
Software
Safety, Risk, Reliability and Quality

More information

10.1109/CSAC.2003.1254340

Cite this

@inproceedings{4e58ef32d5ef4777bd8227a71d0b00a0,

title = "Defending embedded systems against buffer overflow via hardware/software",

abstract = "Buffer over-flow attacks have been causing serious security problems for decades. With more embedded systems networked, it becomes an important research problem to defend embedded systems against buffer overflow attacks. We propose the hardware/software address protection (HSAP) technique to solve this problem. We first classify buffer overflow attacks into two categories (stack smashing attacks and function pointer attacks) and then provide two corresponding defending strategies. In our technique, hardware boundary check method and function pointer XOR method are used to protect a system against stack smashing attacks and function pointer attacks, respectively. Although the focus of the HSAP technique is on embedded systems because of the availability of hardware support, we show that the HSAP technique is applied to any type of processors to defend against buffer overflow attacks. We use four classes of processors to illustrate that the applicability of our technique is independent of architectures. We experiment with our HSAP technique in ARM Evaluator-7T simulation development environments. The results show that our HSAP technique defends a system against more types of buffer overflow attacks with little overhead.",

author = "Zili Shao and Qingfeng Zhuge and Yi He and Sha, {Edwin H.M.}",

year = "2003",

month = jan,

day = "1",

doi = "10.1109/CSAC.2003.1254340",

language = "English",

volume = "2003-January",

pages = "352--361",

booktitle = "Proceedings - 19th Annual Computer Security Applications Conference, ACSAC 2003",

publisher = "IEEE Computer Society",

address = "United States",

note = "19th Annual Computer Security Applications Conference, ACSAC 2003 ; Conference date: 08-12-2003 Through 12-12-2003",

}

Shao, Z, Zhuge, Q, He, Y & Sha, EHM 2003, Defending embedded systems against buffer overflow via hardware/software. in Proceedings - 19th Annual Computer Security Applications Conference, ACSAC 2003. vol. 2003-January, 1254340, IEEE Computer Society, pp. 352-361, 19th Annual Computer Security Applications Conference, ACSAC 2003, Las Vegas, United States, 8/12/03. https://doi.org/10.1109/CSAC.2003.1254340

Defending embedded systems against buffer overflow via hardware/software. / Shao, Zili; Zhuge, Qingfeng; He, Yi; Sha, Edwin H.M.

Proceedings - 19th Annual Computer Security Applications Conference, ACSAC 2003. Vol. 2003-January IEEE Computer Society, 2003. p. 352-361 1254340.

Research output: Chapter in book / Conference proceeding › Conference article published in proceeding or book › Academic research › peer-review

TY - GEN

T1 - Defending embedded systems against buffer overflow via hardware/software

AU - Shao, Zili

AU - Zhuge, Qingfeng

AU - He, Yi

AU - Sha, Edwin H.M.

PY - 2003/1/1

Y1 - 2003/1/1

N2 - Buffer over-flow attacks have been causing serious security problems for decades. With more embedded systems networked, it becomes an important research problem to defend embedded systems against buffer overflow attacks. We propose the hardware/software address protection (HSAP) technique to solve this problem. We first classify buffer overflow attacks into two categories (stack smashing attacks and function pointer attacks) and then provide two corresponding defending strategies. In our technique, hardware boundary check method and function pointer XOR method are used to protect a system against stack smashing attacks and function pointer attacks, respectively. Although the focus of the HSAP technique is on embedded systems because of the availability of hardware support, we show that the HSAP technique is applied to any type of processors to defend against buffer overflow attacks. We use four classes of processors to illustrate that the applicability of our technique is independent of architectures. We experiment with our HSAP technique in ARM Evaluator-7T simulation development environments. The results show that our HSAP technique defends a system against more types of buffer overflow attacks with little overhead.

AB - Buffer over-flow attacks have been causing serious security problems for decades. With more embedded systems networked, it becomes an important research problem to defend embedded systems against buffer overflow attacks. We propose the hardware/software address protection (HSAP) technique to solve this problem. We first classify buffer overflow attacks into two categories (stack smashing attacks and function pointer attacks) and then provide two corresponding defending strategies. In our technique, hardware boundary check method and function pointer XOR method are used to protect a system against stack smashing attacks and function pointer attacks, respectively. Although the focus of the HSAP technique is on embedded systems because of the availability of hardware support, we show that the HSAP technique is applied to any type of processors to defend against buffer overflow attacks. We use four classes of processors to illustrate that the applicability of our technique is independent of architectures. We experiment with our HSAP technique in ARM Evaluator-7T simulation development environments. The results show that our HSAP technique defends a system against more types of buffer overflow attacks with little overhead.

UR - http://www.scopus.com/inward/record.url?scp=84944726311&partnerID=8YFLogxK

U2 - 10.1109/CSAC.2003.1254340

DO - 10.1109/CSAC.2003.1254340

M3 - Conference article published in proceeding or book

VL - 2003-January

SP - 352

EP - 361

BT - Proceedings - 19th Annual Computer Security Applications Conference, ACSAC 2003

PB - IEEE Computer Society

T2 - 19th Annual Computer Security Applications Conference, ACSAC 2003

Y2 - 8 December 2003 through 12 December 2003

ER -