SG10201701541SA - Device and method for reinforcing control flow integrity of software application - Google Patents

Device and method for reinforcing control flow integrity of software application

Info

Publication number
SG10201701541SA
SG10201701541SA SG10201701541SA SG10201701541SA SG10201701541SA SG 10201701541S A SG10201701541S A SG 10201701541SA SG 10201701541S A SG10201701541S A SG 10201701541SA SG 10201701541S A SG10201701541S A SG 10201701541SA SG 10201701541S A SG10201701541S A SG 10201701541SA
Authority
SG
Singapore
Prior art keywords
control flow
software application
flow integrity
reinforcing control
reinforcing
Prior art date
Application number
SG10201701541SA
Other languages
English (en)
Inventor
Ting Dai
Yongzheng Wu
Original Assignee
Huawei Int Pte Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Int Pte Ltd filed Critical Huawei Int Pte Ltd
Priority to SG10201701541SA priority Critical patent/SG10201701541SA/en
Priority to CN201880013935.XA priority patent/CN110325994B/zh
Priority to EP18709410.7A priority patent/EP3580680B1/en
Priority to PCT/SG2018/050086 priority patent/WO2018156085A1/en
Priority to BR112019017714A priority patent/BR112019017714A2/pt
Publication of SG10201701541SA publication Critical patent/SG10201701541SA/en
Priority to US16/552,534 priority patent/US11429511B2/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/52Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
    • G06F21/54Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by adding security routines or objects to programs
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/36Preventing errors by testing or debugging software
    • G06F11/3604Software analysis for verifying properties of programs
    • G06F11/3612Software analysis for verifying properties of programs by runtime analysis
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/36Preventing errors by testing or debugging software
    • G06F11/362Software debugging
    • G06F11/3636Software debugging by tracing the execution of the program
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/36Preventing errors by testing or debugging software
    • G06F11/362Software debugging
    • G06F11/3644Software debugging by instrumenting at runtime
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/51Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems at application loading time, e.g. accepting, rejecting, starting or inhibiting executable software based on integrity or source reliability
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/03Indexing scheme relating to G06F21/50, monitoring users, programs or devices to maintain the integrity of platforms
    • G06F2221/033Test or assess software

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Quality & Reliability (AREA)
  • Debugging And Monitoring (AREA)
  • Stored Programmes (AREA)
  • Devices For Executing Special Programs (AREA)
  • Document Processing Apparatus (AREA)
  • Programmable Controllers (AREA)
SG10201701541SA 2017-02-27 2017-02-27 Device and method for reinforcing control flow integrity of software application SG10201701541SA (en)

Priority Applications (6)

Application Number Priority Date Filing Date Title
SG10201701541SA SG10201701541SA (en) 2017-02-27 2017-02-27 Device and method for reinforcing control flow integrity of software application
CN201880013935.XA CN110325994B (zh) 2017-02-27 2018-02-26 增强软件应用的控制流完整性的设备和方法
EP18709410.7A EP3580680B1 (en) 2017-02-27 2018-02-26 Device and method for reinforcing control flow integrity of software application
PCT/SG2018/050086 WO2018156085A1 (en) 2017-02-27 2018-02-26 Device and method for reinforcing control flow integrity of software application
BR112019017714A BR112019017714A2 (pt) 2017-02-27 2018-02-26 Dispositivo e método para reforçar integridade de fluxo de controle de aplicação de software
US16/552,534 US11429511B2 (en) 2017-02-27 2019-08-27 Device and method for reinforcing control flow integrity of software application

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
SG10201701541SA SG10201701541SA (en) 2017-02-27 2017-02-27 Device and method for reinforcing control flow integrity of software application

Publications (1)

Publication Number Publication Date
SG10201701541SA true SG10201701541SA (en) 2018-09-27

Family

ID=61581698

Family Applications (1)

Application Number Title Priority Date Filing Date
SG10201701541SA SG10201701541SA (en) 2017-02-27 2017-02-27 Device and method for reinforcing control flow integrity of software application

Country Status (6)

Country Link
US (1) US11429511B2 (zh)
EP (1) EP3580680B1 (zh)
CN (1) CN110325994B (zh)
BR (1) BR112019017714A2 (zh)
SG (1) SG10201701541SA (zh)
WO (1) WO2018156085A1 (zh)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11687646B2 (en) * 2019-08-15 2023-06-27 Dellfer, Inc. Forensic data collection and analysis utilizing function call stacks
CN112668004B (zh) * 2019-10-16 2022-06-21 武汉斗鱼网络科技有限公司 一种基于llvm的函数校验方法及相关装置
CN111898130B (zh) * 2020-06-28 2024-01-19 中国科学院信息工程研究所 一种细粒度控制流完整性保护实现方法及系统
CN112799725B (zh) * 2020-10-30 2024-03-26 航天东方红卫星有限公司 一种适用于卫星型号的指令控制数据块功能的设计方法
WO2023107261A1 (en) * 2021-12-08 2023-06-15 Qualcomm Incorporated Methods for improving security in computing devices implementing control flow integrity

Family Cites Families (22)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7577992B2 (en) 2005-01-14 2009-08-18 Microsoft Corporation Software security based on control flow integrity
EP1870829B1 (en) * 2006-06-23 2014-12-03 Microsoft Corporation Securing software by enforcing data flow integrity
US8341613B2 (en) * 2007-12-04 2012-12-25 International Business Machines Corporation Reducing stack space consumption via head-call optimization
US8117660B2 (en) 2008-06-19 2012-02-14 Microsoft Corporation Secure control flows by monitoring control transfers
US8504839B2 (en) * 2008-10-27 2013-08-06 Advanced Micro Devices, Inc. Method, apparatus, and device for protecting against programming attacks and/or data corruption
US20100192026A1 (en) * 2009-01-27 2010-07-29 Microsoft Corporation Implementations of program runtime checks
WO2011116448A1 (en) * 2010-03-25 2011-09-29 Irdeto Canada Corporation System and method for dynamic, variably-timed operation paths as a resistance to side channel and repeated invocation attacks
US20130024676A1 (en) * 2011-07-19 2013-01-24 Glew Andrew F Control flow integrity
US8943313B2 (en) * 2011-07-19 2015-01-27 Elwha Llc Fine-grained security in federated data sets
US9798873B2 (en) * 2011-08-04 2017-10-24 Elwha Llc Processor operable to ensure code integrity
US11003464B2 (en) * 2012-04-19 2021-05-11 Microsoft Technology Licensing, Llc Control flow integrity enforcement at scale
CN103345445A (zh) * 2013-07-02 2013-10-09 华中科技大学 基于控制流检测的抗错误注入攻击的安全芯片设计方法
AU2014348812B2 (en) * 2013-11-12 2019-09-26 RunSafe Security, Inc. Improved control flow integrity system and method
US9361102B2 (en) * 2014-06-09 2016-06-07 Lehigh University Methods for enforcing control flow of a computer program
US9390260B2 (en) 2014-06-09 2016-07-12 Lehigh University Methods for enforcing control flow of a computer program
US9767004B2 (en) * 2014-06-16 2017-09-19 Symantec Corporation Dynamic call tracking method based on CPU interrupt instructions to improve disassembly quality of indirect calls
US9569613B2 (en) * 2014-12-23 2017-02-14 Intel Corporation Techniques for enforcing control flow integrity using binary translation
US9767292B2 (en) * 2015-10-11 2017-09-19 Unexploitable Holdings Llc Systems and methods to identify security exploits by generating a type based self-assembling indirect control flow graph
CN105868626B (zh) * 2016-03-25 2018-10-02 中国人民解放军信息工程大学 基于控制流粗粒度完整性的监控软件业务行为的方法
CN106021110B (zh) * 2016-05-24 2019-03-26 南京大学 基于虚函数表继承关系的代码重利用攻击检测方法
CN106295258B (zh) * 2016-08-04 2019-03-26 南京大学 用于多线程后向控制流完整性保护的影子栈实现方法
US10372902B2 (en) * 2017-03-06 2019-08-06 Intel Corporation Control flow integrity

Also Published As

Publication number Publication date
CN110325994B (zh) 2023-09-22
BR112019017714A2 (pt) 2022-03-22
WO2018156085A1 (en) 2018-08-30
US20190384693A1 (en) 2019-12-19
CN110325994A (zh) 2019-10-11
EP3580680A1 (en) 2019-12-18
US11429511B2 (en) 2022-08-30
EP3580680B1 (en) 2023-10-25

Similar Documents

Publication Publication Date Title
SG10201701541SA (en) Device and method for reinforcing control flow integrity of software application
MX2022013057A (es) Sistema y metodo para controlar un vehiculo.
MX2017012830A (es) Asistencia al vehiculo.
EP3243137A4 (en) Generating and executing a control flow
HK1218172A1 (zh) 用於動態地控制對代碼的執行的計算機實現方法和系統
NZ729814A (en) Water management system and method
DE112018003927A5 (de) Verfahren zur regelung des ausgangsdrucks eines hydraulikantriebsystems, verwendung des verfahrens und hydraulikantriebsystem
EP3625740C0 (de) Vorrichtung und verfahren zum steuern eines materialflusses an einem materialfluss-knotenpunkt
EP3406880A4 (en) WASTEGASTE VALVE CONTROL METHOD AND CONTROL DEVICE
GB2583391B (en) Control method and computer program
AR105335A1 (es) Anticuerpos monoclonales anti-sortilina
MX2020004448A (es) Conexion roscada para tubo y metodo para producir la conexion roscada para tubo.
EP3406879A4 (en) Waste gate valve control method and control device
PL3420632T3 (pl) Układ i sposób dla zintegrowanego układu sterowania do zespołu prądotwórczego z silnikiem wysokoprężnym
WO2014138650A3 (en) Extended length packer with timed setting
EP3846005A4 (en) INPUT DEVICE, CONTROL METHOD AND PROGRAM
GB202109559D0 (en) Well annular back pressure control system having one or more adjustable choke valves and method thereof
WO2019053273A8 (en) Vibro-tactile feedback method and device
PT3513270T (pt) Processo de comando de um objeto portátil e objeto portátil controlado por um tal processo
EP3852027A4 (en) OPTIMIZATION DEVICE, OPTIMIZATION DEVICE CONTROL METHOD AND OPTIMIZATION DEVICE CONTROL PROGRAM
MX2017007037A (es) Composición y método para el tratamiento de nematodos.
SG11202103392SA (en) Methods and systems for automatically generating and executing a set of parameterized instruction templates
WO2017135955A8 (en) Managing a microfluidic device
EP3665679A4 (en) SYSTEM AND PROCEDURE FOR IMPLEMENTATION OF AN INFERENCE MACHINE BY OPTIMIZING PROGRAM OPERATION
MX2018011559A (es) Sistema de control de flujos de trabajo.