Title :
Lightweight Hardware Return Address and Stack Frame Tracking to Prevent Function Return Address Attack
Author :
Kao, Wen-Fu ; Wu, S. Felix
Author_Institution :
Dept. of Comput. Sci., Univ. of California, Davis, CA, USA
Abstract :
Supporting security features in hardware is relatively recent. Adding extra protection at the architectural-level is effective and can improve the existing software protection. In this paper, we discuss the challenges and considerations of adding a security enhancement inside hardware. We also demonstrated a light-weight architecture design change under the constraint to prevent from function return address attack by tracking the active return address and stack frame pointer, and raising a warning upon the return of a function if the return address has been modified. The idea is as effective as other hardware solutions but significantly reduces the hardware changes and performance overhead, and is transparent to software. The preliminary result showed 89% of the return address is covered by our heuristic tracking method.
Keywords :
security of data; function return address attack; heuristic tracking method; lightweight hardware return address; software protection; stack frame pointer tracking; Computer architecture; Computer science; Computer security; Data security; Hardware; Information security; Microarchitecture; Software performance; Software protection; Target tracking; architecture; security; stack overflow attack;
Conference_Titel :
Computational Science and Engineering, 2009. CSE '09. International Conference on
Conference_Location :
Vancouver, BC
Print_ISBN :
978-1-4244-5334-4
Electronic_ISBN :
978-0-7695-3823-5
DOI :
10.1109/CSE.2009.369
