TY - GEN
T1 - Droidsentry
T2 - 21st International Conference on Control Systems and Computer Science, CSCS 2017
AU - Suciu, Darius Andrei
AU - Sion, Radu
N1 - Publisher Copyright:
© 2017 IEEE.
PY - 2017/7/5
Y1 - 2017/7/5
N2 - The fast evolution of mobile devices has made them the center of attention for not only the research industry, but also malicious actors, as smartphones are used to store, transmit and process sensitive information. The diversity and number of typically installed applications create windows of opportunity for attackers. Attackers can use vulnerable applications to gain control over the device or change the behavior of applications relied on to manage user's finances or store their secret data. Thus, current mobile systems need application execution verification mechanisms. In consequence, we present a framework for current ARM mobile devices that can detect application control flow manipulation attempts by looking at the history of executed control flow altering instructions on the processor. This history examination provides enough information to implement the state-of-the-art fine-grained control policies, without additional binary instrumentation. Moreover, this framework is designed to work with existing hardware and have a minimal impact on performance.
AB - The fast evolution of mobile devices has made them the center of attention for not only the research industry, but also malicious actors, as smartphones are used to store, transmit and process sensitive information. The diversity and number of typically installed applications create windows of opportunity for attackers. Attackers can use vulnerable applications to gain control over the device or change the behavior of applications relied on to manage user's finances or store their secret data. Thus, current mobile systems need application execution verification mechanisms. In consequence, we present a framework for current ARM mobile devices that can detect application control flow manipulation attempts by looking at the history of executed control flow altering instructions on the processor. This history examination provides enough information to implement the state-of-the-art fine-grained control policies, without additional binary instrumentation. Moreover, this framework is designed to work with existing hardware and have a minimal impact on performance.
KW - Control flow integrity
KW - Program tracing macrocell
KW - Return oriented programming
KW - TrustZone
UR - https://www.scopus.com/pages/publications/85027530534
U2 - 10.1109/CSCS.2017.28
DO - 10.1109/CSCS.2017.28
M3 - Conference contribution
AN - SCOPUS:85027530534
T3 - Proceedings - 2017 21st International Conference on Control Systems and Computer, CSCS 2017
SP - 156
EP - 158
BT - Proceedings - 2017 21st International Conference on Control Systems and Computer, CSCS 2017
A2 - Dumitrache, Ioan
A2 - Florea, Adina Magda
A2 - Dumitrascu, Alexandru
A2 - Pop, Florin
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 29 May 2017 through 31 May 2017
ER -