Moon Chan Park scite author profile

Control-flow integrity (CFI) is considered a principled mitigation against control-flow hijacking even under the most powerful attacker who can arbitrarily write and read memory. However, existing schemes still demonstrated limitations in either guaranteeing high security level or achieving low performance and memory overhead. These limitations have restricted the application of CFI in real software.To improve its applicability similar to mandatory protection schemes such as DEP and ASLR, it is essential to improve both high security guarantee and low overhead. In this paper, we propose "BGCFI", which is a fine-grained CFI based on a Bipartite Graph. The relationship between an indirect branch and a valid target address at the branch is represented by an edge in the bipartite graph. The verification of the indirect branch is achieved by checking the existence of the corresponding edge in the bipartite graph. The verification method for fine-grained CFI results in more efficiency on both computational and memory overhead, while completely preserving high security guarantee. We demonstrate our results through the implementation of a proof-of-concept module and evaluation on the SPEC CPU 2017 suite and the Firefox browser.INDEX TERMS Control-flow hijacking, control-data attack, control-flow integrity (CFI).

show abstract

IBV-CFI: Efficient fine-grained control-flow integrity preserving CFG precision

Jang

Park

Lee

2020

Computers & Security

View full text Add to dashboard Cite

A Study on Deobfuscation Method of Android and Implementation of Automatic Analysis Tool

Lee¹,

Park²,

Park³

et al. 2015

Journal of the Korea Institute of Information Security and Cryp

View full text Add to dashboard Cite

Obfuscation tools can be used to protect android applications from reverse-engineering in android environment. However, obfuscation tools can also be misused to protect malicious applications. In order to evade detection of anti-virus, malware authors often apply obfuscation techniques to malicious applications. It is difficult to analyze the functionality of obfuscated malicious applications until it is deobfuscated. Therefore, a study on deobfuscation is certainly required to address the obfuscated malicious applications. In this paper, we analyze APKs which are obfuscated by commercial obfuscation tools and propose the deobfuscation method that can statically identify obfuscation options and deobfuscate it. Finally, we implement automatic identification and deobfuscation tool, then show the results of evaluation.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Moon Chan Park

VoltageIDS: Low-Level Communication Characteristics for Automotive Intrusion Detection System

Random CFI (RCFI): Efficient Fine-Grained Control-Flow Integrity Through Random Verification

BGCFI: Efficient Verification in Fine-Grained Control-Flow Integrity Based on Bipartite Graph

IBV-CFI: Efficient fine-grained control-flow integrity preserving CFG precision

A Study on Deobfuscation Method of Android and Implementation of Automatic Analysis Tool

Contact Info

Product

Resources

About