BR112019017714A2 - Dispositivo e método para reforçar integridade de fluxo de controle de aplicação de software - Google Patents

Dispositivo e método para reforçar integridade de fluxo de controle de aplicação de software

Info

Publication number
BR112019017714A2
BR112019017714A2 BR112019017714A BR112019017714A BR112019017714A2 BR 112019017714 A2 BR112019017714 A2 BR 112019017714A2 BR 112019017714 A BR112019017714 A BR 112019017714A BR 112019017714 A BR112019017714 A BR 112019017714A BR 112019017714 A2 BR112019017714 A2 BR 112019017714A2
Authority
BR
Brazil
Prior art keywords
control flow
software application
flow integrity
application control
enforcing software
Prior art date
Application number
BR112019017714A
Other languages
English (en)
Inventor
Ting Dai
Yongzheng Wu
Original Assignee
Huawei Int Pte Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Int Pte Ltd filed Critical Huawei Int Pte Ltd
Publication of BR112019017714A2 publication Critical patent/BR112019017714A2/pt

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/52Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
    • G06F21/54Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by adding security routines or objects to programs
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/36Preventing errors by testing or debugging software
    • G06F11/3604Software analysis for verifying properties of programs
    • G06F11/3612Software analysis for verifying properties of programs by runtime analysis
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/36Preventing errors by testing or debugging software
    • G06F11/362Software debugging
    • G06F11/3636Software debugging by tracing the execution of the program
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/36Preventing errors by testing or debugging software
    • G06F11/362Software debugging
    • G06F11/3644Software debugging by instrumenting at runtime
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/51Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems at application loading time, e.g. accepting, rejecting, starting or inhibiting executable software based on integrity or source reliability
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/03Indexing scheme relating to G06F21/50, monitoring users, programs or devices to maintain the integrity of platforms
    • G06F2221/033Test or assess software

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Quality & Reliability (AREA)
  • Stored Programmes (AREA)
  • Debugging And Monitoring (AREA)
  • Devices For Executing Special Programs (AREA)
  • Document Processing Apparatus (AREA)
  • Programmable Controllers (AREA)

Abstract

dispositivo e método para reforçar integridade de fluxo de controle de aplicação de software. este documento descreve um dispositivo e método para um dispositivo reforçar a integridade de fluxo de controle de uma aplicação de software enquanto a aplicação está sendo executada no dispositivo.
BR112019017714A 2017-02-27 2018-02-26 Dispositivo e método para reforçar integridade de fluxo de controle de aplicação de software BR112019017714A2 (pt)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
SG10201701541SA SG10201701541SA (en) 2017-02-27 2017-02-27 Device and method for reinforcing control flow integrity of software application
PCT/SG2018/050086 WO2018156085A1 (en) 2017-02-27 2018-02-26 Device and method for reinforcing control flow integrity of software application

Publications (1)

Publication Number Publication Date
BR112019017714A2 true BR112019017714A2 (pt) 2022-03-22

Family

ID=61581698

Family Applications (1)

Application Number Title Priority Date Filing Date
BR112019017714A BR112019017714A2 (pt) 2017-02-27 2018-02-26 Dispositivo e método para reforçar integridade de fluxo de controle de aplicação de software

Country Status (6)

Country Link
US (1) US11429511B2 (pt)
EP (1) EP3580680B1 (pt)
CN (1) CN110325994B (pt)
BR (1) BR112019017714A2 (pt)
SG (1) SG10201701541SA (pt)
WO (1) WO2018156085A1 (pt)

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11687646B2 (en) * 2019-08-15 2023-06-27 Dellfer, Inc. Forensic data collection and analysis utilizing function call stacks
CN112668004B (zh) * 2019-10-16 2022-06-21 武汉斗鱼网络科技有限公司 一种基于llvm的函数校验方法及相关装置
CN111898130B (zh) * 2020-06-28 2024-01-19 中国科学院信息工程研究所 一种细粒度控制流完整性保护实现方法及系统
CN112799725B (zh) * 2020-10-30 2024-03-26 航天东方红卫星有限公司 一种适用于卫星型号的指令控制数据块功能的设计方法
US12008149B2 (en) * 2020-12-16 2024-06-11 International Business Machines Corporation Method and system for on demand control of hardware support for software pointer authentification in a computing system
WO2023107261A1 (en) * 2021-12-08 2023-06-15 Qualcomm Incorporated Methods for improving security in computing devices implementing control flow integrity

Family Cites Families (22)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7577992B2 (en) 2005-01-14 2009-08-18 Microsoft Corporation Software security based on control flow integrity
EP1870829B1 (en) * 2006-06-23 2014-12-03 Microsoft Corporation Securing software by enforcing data flow integrity
US8341613B2 (en) * 2007-12-04 2012-12-25 International Business Machines Corporation Reducing stack space consumption via head-call optimization
US8117660B2 (en) 2008-06-19 2012-02-14 Microsoft Corporation Secure control flows by monitoring control transfers
US8464011B2 (en) * 2008-10-27 2013-06-11 Advanced Micro Devices, Inc. Method and apparatus for providing secure register access
US20100192026A1 (en) * 2009-01-27 2010-07-29 Microsoft Corporation Implementations of program runtime checks
EP2550622A4 (en) * 2010-03-25 2013-08-28 Irdeto Canada Corp SYSTEM AND METHOD FOR GENERATING DYNAMIC AND VARIABLE OPERATING PATHS IN TIME TO PROVIDE RESISTANCE TO CHANNEL-SIDE ATTACKS AND REPEATED INVOCATION ATTACKS
US20130024676A1 (en) * 2011-07-19 2013-01-24 Glew Andrew F Control flow integrity
US8943313B2 (en) * 2011-07-19 2015-01-27 Elwha Llc Fine-grained security in federated data sets
US9798873B2 (en) * 2011-08-04 2017-10-24 Elwha Llc Processor operable to ensure code integrity
US11003464B2 (en) * 2012-04-19 2021-05-11 Microsoft Technology Licensing, Llc Control flow integrity enforcement at scale
CN103345445A (zh) * 2013-07-02 2013-10-09 华中科技大学 基于控制流检测的抗错误注入攻击的安全芯片设计方法
US9805188B2 (en) * 2013-11-12 2017-10-31 RunSafe Security, Inc. Control flow integrity system and method
US9390260B2 (en) 2014-06-09 2016-07-12 Lehigh University Methods for enforcing control flow of a computer program
US9361102B2 (en) * 2014-06-09 2016-06-07 Lehigh University Methods for enforcing control flow of a computer program
US9767004B2 (en) * 2014-06-16 2017-09-19 Symantec Corporation Dynamic call tracking method based on CPU interrupt instructions to improve disassembly quality of indirect calls
US9569613B2 (en) * 2014-12-23 2017-02-14 Intel Corporation Techniques for enforcing control flow integrity using binary translation
US9767292B2 (en) * 2015-10-11 2017-09-19 Unexploitable Holdings Llc Systems and methods to identify security exploits by generating a type based self-assembling indirect control flow graph
CN105868626B (zh) * 2016-03-25 2018-10-02 中国人民解放军信息工程大学 基于控制流粗粒度完整性的监控软件业务行为的方法
CN106021110B (zh) * 2016-05-24 2019-03-26 南京大学 基于虚函数表继承关系的代码重利用攻击检测方法
CN106295258B (zh) * 2016-08-04 2019-03-26 南京大学 用于多线程后向控制流完整性保护的影子栈实现方法
US10372902B2 (en) * 2017-03-06 2019-08-06 Intel Corporation Control flow integrity

Also Published As

Publication number Publication date
SG10201701541SA (en) 2018-09-27
CN110325994B (zh) 2023-09-22
CN110325994A (zh) 2019-10-11
WO2018156085A1 (en) 2018-08-30
US11429511B2 (en) 2022-08-30
US20190384693A1 (en) 2019-12-19
EP3580680B1 (en) 2023-10-25
EP3580680A1 (en) 2019-12-18

Similar Documents

Publication Publication Date Title
BR112019017714A2 (pt) Dispositivo e método para reforçar integridade de fluxo de controle de aplicação de software
BR112021018770A2 (pt) Métodos e dispositivos de terapia digital personalizada
BR112017008825A2 (pt) método e sistema de direção assistida para um veículo, métodos para controlar um sistema de direção assistida de um veículo e para controlar um veículo, método de substituição de borboleta para um veículo recreativo, e, veículo.
BR112017003050A2 (pt) método e sistema para o tratamento de uma formação subterrânea, composição curável para o tratamento de uma formação subterrânea, e, método de preparo de uma composição curável para o tratamento de uma formação subterrânea
BR112017005522A2 (pt) abas de aplicação heterogênea
BR112019012342A2 (pt) anticorpos il-11
MX2015003552A (es) Comunicaciones de maniobra de emergencia de un vehiculo.
BR112018071600A2 (pt) métodos, composições e usos relacionados aos mesmos
BR112017000229A2 (pt) operação de convolução decomponível em redes neurais
BR112018074718A2 (pt) composição líquida não oleosa, não aquosa, e, método de controle de nematódeos.
EA201692299A1 (ru) Устройство в виде анатомической маски
CL2016000042A1 (es) Uso de una combinación de un inhibidor de mek y un inhibidor de erk para el tratamiento de enfermedades hiperproliferativas.
BR112016023619A2 (pt) técnicas para otimização de potência com base em parâmetros de rede
CL2018003489A1 (es) Composición y método para reducir neutropenia
BR112015030613A2 (pt) terminal portátil e método de interface de usuário em terminal portátil
BR112016024601A2 (pt) composições de siloxano e métodos para reduzir voc e poeira de siloxano
BR112015031159A2 (pt) sistema cimentício compreendendo partículas de acelerador revestidas com goma-laca reticulada
BR112018071568A2 (pt) métodos, composições e usos relacionados aos mesmos
FI20165883A (fi) Menetelmä ja ohjauslaite moottorin käyttämiseksi
BR112018071618A2 (pt) métodos, composições e usos relacionados aos mesmos
FR3021701B1 (fr) Procede et dispositif de controle d'une poussee d'un turboreacteur
BR112018077210A2 (pt) vírus de enterite de pato e usos do mesmo
BR112016016288A2 (pt) método implementado por computador, meio legível por computador não transitório, e dispositivo de computação relativos a metadados de definição de privacidade para desenvolvedores de aplicativo
BR112017006693A2 (pt) dispositivo de controle rotativo, e, método para comunicações de fundo de poço.
BR112017024396A2 (pt) método para controlar uma velocidade real de um veículo motorizado