all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Control-Flow Integrity at RISC: Attacking RISC-V by Jump-Oriented Programming. (arXiv:2211.16212v1 [cs.CR])

Add to bookmarks

Web: http://arxiv.org/abs/2211.16212

Nov. 30, 2022, 2:10 a.m. | Olivier Gilles, Franck Viguier, Nikolai Kosmatov, Daniel Gracia Pérez

cs.CR updates on arXiv.org arxiv.org

RISC-V is an open instruction set architecture recently developed for
embedded real-time systems. To achieve a lasting security on these systems and
design efficient countermeasures, a better understanding of vulnerabilities to
novel and potential future attacks is mandatory. This paper demonstrates that
RISC-V is sensible to Jump-Oriented Programming, a class of complex code-reuse
attacks, able to bypass existing protections. We provide a first analysis of
RISC-V systems' attack surface exploitable by such attacks, and show how they
can be chained …

control flow integrity programming

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

Uniform Cyclic Group Factorizations of Finite Groups. (arXiv:2302.02831v1 [math.GR] CROSS LISTED) 12 hours ago | arxiv.org
math
Less is More: Understanding Word-level Textual Adversarial Attack via n-gram Frequency Descend. (arXiv:2302.02568v2 [cs.CL] UPDATED) 12 hours ago | arxiv.org
adversarial attack word
Resilient Consensus Sustained Collaboratively. (arXiv:2302.02325v2 [cs.CR] UPDATED) 12 hours ago | arxiv.org
CLOAK: Enabling Confidential Smart Contract With Multi-Party Transactions. (arXiv:2106.13926v4 [cs.CR] UPDATED) 12 hours ago | arxiv.org
confidential contract party smart +1
Privacy Intelligence: A Survey on Image Privacy in Online Social Networks. (arXiv:2008.12199v3 [cs.CR] UPDATED) 12 hours ago | arxiv.org
intelligence networks privacy social +2
Temporal Robustness against Data Poisoning. (arXiv:2302.03684v1 [cs.LG]) 12 hours ago | arxiv.org
data data poisoning poisoning robustness +1
Private Read Update Write (PRUW) With Heterogeneous Databases. (arXiv:2302.03670v1 [cs.IT]) 12 hours ago | arxiv.org
databases update
Toward Face Biometric De-identification using Adversarial Examples. (arXiv:2302.03657v1 [cs.CV]) 12 hours ago | arxiv.org
adversarial biometric identification
Multiplication polynomials for elliptic curves over finite local rings. (arXiv:2302.03650v1 [math.NT]) 12 hours ago | arxiv.org
elliptic local math rings

Latest InfoSec / Cybersecurity Jobs

View more jobs Post a job on infosec-jobs.com

Penetration Testers - Red Team ICS/OT and Network Experience

@ Waterleaf International LLC | Florida
View on infosec-jobs.com

Chief Information Security Officer

@ Los Angeles Unified School District | Los Angeles
View on infosec-jobs.com

Cybersecurity Engineer

@ Apercen Partners LLC | Folsom, CA
View on infosec-jobs.com

IDM Sr. Security Developer

@ The Ohio State University | Columbus, OH, United States
View on infosec-jobs.com

IT Security Engineer

@ Stylitics | New York City
View on infosec-jobs.com

Information Security Engineer

@ VDA Labs | Remote
View on infosec-jobs.com

Red Team Security Engineer

@ Keeper Security, Inc. | United States - Remote
View on infosec-jobs.com

2023 Security Operations Internship

@ Censys | Ann Arbor, Michigan, United States
View on infosec-jobs.com

Cloud Support Engineer - Security, WFH/In-Office, Mandarin Speaker

@ Amazon.com | Taipei City, TWN
View on infosec-jobs.com

SC2023-002701 IT Analyst- Cloud-Based Ext. Attack Surface Mgmt. (NS)- TUE 21 FEB

@ EMW, Inc. | Mons, Wallonia, Belgium
View on infosec-jobs.com

Cyber Security Consultant

@ Eurofins | Haarlem, Netherlands
View on infosec-jobs.com

Crisis & Cyber Security Management Senior Analyst

@ NielsenIQ | Madrid, Spain
View on infosec-jobs.com