Enhancing Randomization Entropy of x86-64 Code while Preserving Semantic Consistency
Title | Enhancing Randomization Entropy of x86-64 Code while Preserving Semantic Consistency |
Publication Type | Conference Paper |
Year of Publication | 2020 |
Authors | Feng, X., Wang, D., Lin, Z., Kuang, X., Zhao, G. |
Conference Name | 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) |
Keywords | code randomization, code reuse attacks, composability, compositionality, Computer architecture, Entropy, human factors, Information Reuse and Security, Proposals, Prototypes, pubcrawl, Resiliency, return oriented programming, rop attacks, Scalability, security, semantic consistency, Semantics, Testing |
Abstract | Code randomization is considered as the basis of mitigation against code reuse attacks, fundamentally supporting some recent proposals such as execute-only memory (XOM) that aims at dynamic return-oriented programming (ROP) attacks. However, existing code randomization methods are hard to achieve a good balance between high-randomization entropy and semantic consistency. In particular, they always ignore code semantic consistency, incurring performance loss and incompatibility with current security schemes, e.g., control flow integrity (CFI). In this paper, we present an enhanced code randomization method termed as HCRESC, which can improve the randomization entropy significantly, meanwhile ensure the semantic consistency between variants and the original code. HCRESC reschedules instructions within the range of functions rather than basic blocks, thus producing more variants of the original code and preserving the code's semantic. We implement HCRESC on Linux platform of x86-64 architecture and demonstrate that HCRESC can increase the randomization entropy of x86-64 code over than 120% compared with existing methods while ensuring control flow and size of the code unaltered. |
DOI | 10.1109/TrustCom50675.2020.00015 |
Citation Key | feng_enhancing_2020 |