Publications

Publications

Type of Publication: Article in Collected Edition

POSTER: Control-Flow Integrity for Smartphones

Author(s):
Davi, Lucas; Dmitrienko, Alexandra; Egele, Manuel; Fischer, Thomas; Holz, Thorsten; Hund, Ralf; Nürnberger, Stefan; Sadeghi, Ahmad-Reza
Title of Anthology:
Proc. of 18th ACM Conference on Computer and Communications Security (CCS)
Publication Date:
2011
Digital Object Identifier (DOI):
doi:10.1145/2046707.2093484
Link to complete version:
https://dl.acm.org/authorize?N27444
Citation:
LABEL-FOR-eidrisexport

Abstract

Despite extensive research over the last two decades, runtime attacks on software are still prevalent. Recently, smartphones, of which millions are in use today, have become an attractive target for adversaries. However, existing solutions are either ad-hoc or limited in their effectiveness.

In this poster, we present a general countermeasure against runtime attacks on smartphone platforms. Our approach makes use of control-flow integrity (CFI), and tackles unique challenges of the ARM architecture and smartphone platforms. Our framework and implementation is efficient, since it requires no access to source code, performs CFI enforcement on-the-fly during runtime, and is compatible to memory randomization and code signing/encryption. We chose Apple iPhone for our reference implementation, because it has become an attractive target for runtime attacks. Our performance evaluation on a real iOS device demonstrates that our implementation does not induce any notable overhead when applied to popular iOS applications.