Pointerlock: Protecting function pointers with access control on page

Hongwei Zhou; Jinhui Yuan; Zunliang Du; Keda Kang; Xuhua Zhu

doi:10.1109/ICICAS48597.2019.00136

Pointerlock: Protecting function pointers with access control on page

Hongwei Zhou
, Jinhui Yuan
, Zunliang Du
, Keda Kang
, Xuhua Zhu

Information Engineering University
Zhongyuan University of Technology

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

1 Scopus citations

Abstract

Since function pointers are closely related to software control flow and they are writable, attackers often take function pointers as the targets. To protect the function pointers, we propose a novel solution called PointerLock. To avoid being tampered with by the attacker, PointerLock restricts the writing operation on the function pointers with the support of access control on the page. PointerLock centralizes the application's function pointers to a few pages, and these pages are only readable by default. Only when the application want to modify the pointer, PointerLock makes the page writable where the function pointer is located in. This reduces the time window of attacking the function pointer. To prevent an attacker from tampering with other function pointers on the same page as function pointers, PointerLock performs the necessary checks on the page before they are used again. The prototype system of PointerLock was built in Fedora 21 with a 3.17.6 kernel. Two system calls are implemented in kernel space, and six interfaces are developed for users in the form of dynamic link libraries in user space. The tests show that PointerLock is capable of preventing the attacker from tampering with the function pointers, and it does not introduced an overheavy performance.

Original language	English
Title of host publication	Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019
Editors	Yun Bai, Diego Cabrera, Qibing Yu, Ziqiang Pu
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	622-627
Number of pages	6
ISBN (Electronic)	9781728161068
DOIs	https://doi.org/10.1109/ICICAS48597.2019.00136
State	Published - Dec 2019
Externally published	Yes
Event	2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019 - Chongqing, China Duration: 6 Dec 2019 → 8 Dec 2019

Publication series

Name	Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019

Conference

Conference	2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019
Country/Territory	China
City	Chongqing
Period	6/12/19 → 8/12/19

Keywords

Access control
Function pointer
Page

Access to Document

10.1109/ICICAS48597.2019.00136

Cite this

Zhou, H., Yuan, J., Du, Z., Kang, K., & Zhu, X. (2019). Pointerlock: Protecting function pointers with access control on page. In Y. Bai, D. Cabrera, Q. Yu, & Z. Pu (Eds.), Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019 (pp. 622-627). Article 9051367 (Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICICAS48597.2019.00136

Zhou, Hongwei ; Yuan, Jinhui ; Du, Zunliang et al. / Pointerlock : Protecting function pointers with access control on page. Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019. editor / Yun Bai ; Diego Cabrera ; Qibing Yu ; Ziqiang Pu. Institute of Electrical and Electronics Engineers Inc., 2019. pp. 622-627 (Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019).

@inproceedings{d1b3742818164166bf1dd0db6aa5cbd9,

title = "Pointerlock: Protecting function pointers with access control on page",

abstract = "Since function pointers are closely related to software control flow and they are writable, attackers often take function pointers as the targets. To protect the function pointers, we propose a novel solution called PointerLock. To avoid being tampered with by the attacker, PointerLock restricts the writing operation on the function pointers with the support of access control on the page. PointerLock centralizes the application's function pointers to a few pages, and these pages are only readable by default. Only when the application want to modify the pointer, PointerLock makes the page writable where the function pointer is located in. This reduces the time window of attacking the function pointer. To prevent an attacker from tampering with other function pointers on the same page as function pointers, PointerLock performs the necessary checks on the page before they are used again. The prototype system of PointerLock was built in Fedora 21 with a 3.17.6 kernel. Two system calls are implemented in kernel space, and six interfaces are developed for users in the form of dynamic link libraries in user space. The tests show that PointerLock is capable of preventing the attacker from tampering with the function pointers, and it does not introduced an overheavy performance.",

keywords = "Access control, Function pointer, Page",

author = "Hongwei Zhou and Jinhui Yuan and Zunliang Du and Keda Kang and Xuhua Zhu",

note = "Publisher Copyright: {\textcopyright} 2019 IEEE.; 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019 ; Conference date: 06-12-2019 Through 08-12-2019",

year = "2019",

month = dec,

doi = "10.1109/ICICAS48597.2019.00136",

language = "英语",

series = "Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "622--627",

editor = "Yun Bai and Diego Cabrera and Qibing Yu and Ziqiang Pu",

booktitle = "Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019",

address = "美国",

}

Zhou, H, Yuan, J, Du, Z, Kang, K & Zhu, X 2019, Pointerlock: Protecting function pointers with access control on page. in Y Bai, D Cabrera, Q Yu & Z Pu (eds), Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019., 9051367, Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019, Institute of Electrical and Electronics Engineers Inc., pp. 622-627, 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019, Chongqing, China, 6/12/19. https://doi.org/10.1109/ICICAS48597.2019.00136

Pointerlock: Protecting function pointers with access control on page. / Zhou, Hongwei; Yuan, Jinhui; Du, Zunliang et al.
Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019. ed. / Yun Bai; Diego Cabrera; Qibing Yu; Ziqiang Pu. Institute of Electrical and Electronics Engineers Inc., 2019. p. 622-627 9051367 (Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Pointerlock

T2 - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019

AU - Zhou, Hongwei

AU - Yuan, Jinhui

AU - Du, Zunliang

AU - Kang, Keda

AU - Zhu, Xuhua

PY - 2019/12

Y1 - 2019/12

N2 - Since function pointers are closely related to software control flow and they are writable, attackers often take function pointers as the targets. To protect the function pointers, we propose a novel solution called PointerLock. To avoid being tampered with by the attacker, PointerLock restricts the writing operation on the function pointers with the support of access control on the page. PointerLock centralizes the application's function pointers to a few pages, and these pages are only readable by default. Only when the application want to modify the pointer, PointerLock makes the page writable where the function pointer is located in. This reduces the time window of attacking the function pointer. To prevent an attacker from tampering with other function pointers on the same page as function pointers, PointerLock performs the necessary checks on the page before they are used again. The prototype system of PointerLock was built in Fedora 21 with a 3.17.6 kernel. Two system calls are implemented in kernel space, and six interfaces are developed for users in the form of dynamic link libraries in user space. The tests show that PointerLock is capable of preventing the attacker from tampering with the function pointers, and it does not introduced an overheavy performance.

AB - Since function pointers are closely related to software control flow and they are writable, attackers often take function pointers as the targets. To protect the function pointers, we propose a novel solution called PointerLock. To avoid being tampered with by the attacker, PointerLock restricts the writing operation on the function pointers with the support of access control on the page. PointerLock centralizes the application's function pointers to a few pages, and these pages are only readable by default. Only when the application want to modify the pointer, PointerLock makes the page writable where the function pointer is located in. This reduces the time window of attacking the function pointer. To prevent an attacker from tampering with other function pointers on the same page as function pointers, PointerLock performs the necessary checks on the page before they are used again. The prototype system of PointerLock was built in Fedora 21 with a 3.17.6 kernel. Two system calls are implemented in kernel space, and six interfaces are developed for users in the form of dynamic link libraries in user space. The tests show that PointerLock is capable of preventing the attacker from tampering with the function pointers, and it does not introduced an overheavy performance.

KW - Access control

KW - Function pointer

KW - Page

UR - https://www.scopus.com/pages/publications/85083463300

U2 - 10.1109/ICICAS48597.2019.00136

DO - 10.1109/ICICAS48597.2019.00136

M3 - 会议稿件

AN - SCOPUS:85083463300

T3 - Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019

SP - 622

EP - 627

BT - Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019

A2 - Bai, Yun

A2 - Cabrera, Diego

A2 - Yu, Qibing

A2 - Pu, Ziqiang

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 6 December 2019 through 8 December 2019

ER -

Zhou H, Yuan J, Du Z, Kang K, Zhu X. Pointerlock: Protecting function pointers with access control on page. In Bai Y, Cabrera D, Yu Q, Pu Z, editors, Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019. Institute of Electrical and Electronics Engineers Inc. 2019. p. 622-627. 9051367. (Proceedings - 2019 International Conference on Intelligent Computing, Automation and Systems, ICICAS 2019). doi: 10.1109/ICICAS48597.2019.00136

Pointerlock: Protecting function pointers with access control on page

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this