Title : 
Preventing Memory Error Exploits with WIT
         
        
            Author : 
Akritidis, Periklis ; Cadar, Cristian ; Raiciu, Costin ; Costa, Manuel ; Castro, Miguel
         
        
            Author_Institution : 
Microsoft Res., Cambridge
         
        
        
        
        
            Abstract : 
Attacks often exploit memory errors to gain control over the execution of vulnerable programs. These attacks remain a serious problem despite previous research on techniques to prevent them. We present write integrity testing (WIT), a new technique that provides practical protection from these attacks. WIT uses points-to analysis at compile time to compute the control-flow graph and the set of objects that can be written by each instruction in the program. Then it generates code instrumented to prevent instructions from modifying objects that are not in the set computed by the static analysis, and to ensure that indirect control transfers are allowed by the control-flow graph. To improve coverage where the analysis is not precise enough, WIT inserts small guards between the original program objects. We describe an efficient implementation with optimizations to reduce space and time overhead. This implementation can be used in practice because it compiles C and C++ programs without modifications, it has high coverage with no false positives, and it has low overhead. WIT´s average runtime overhead is only 7% across a set of CPU intensive benchmarks and it is negligible when IO is the bottleneck.
         
        
            Keywords : 
data flow graphs; program compilers; program control structures; program diagnostics; program testing; security of data; C program; C++ program; control-flow graph; memory error exploit prevention; points-to analysis; program compilation; static analysis; vulnerable program execution control; write integrity testing; Color; Computer aided instruction; Error correction; Gain control; Instruments; Privacy; Protection; Runtime; Security; Testing; attack detection; instrumentation; memory errors; static analysis;
         
        
        
        
            Conference_Titel : 
Security and Privacy, 2008. SP 2008. IEEE Symposium on
         
        
            Conference_Location : 
Oakland, CA
         
        
        
            Print_ISBN : 
978-0-7695-3168-7