all InfoSec news
EC-CFI: Control-Flow Integrity via Code Encryption Counteracting Fault Attacks. (arXiv:2301.13760v1 [cs.CR])
cs.CR updates on arXiv.org arxiv.org
Fault attacks enable adversaries to manipulate the control-flow of
security-critical applications. By inducing targeted faults into the CPU, the
software's call graph can be escaped and the control-flow can be redirected to
arbitrary functions inside the program. To protect the control-flow from these
attacks, dedicated fault control-flow integrity (CFI) countermeasures are
commonly deployed. However, these schemes either have high detection latencies
or require intrusive hardware changes.
In this paper, we present EC-CFI, a software-based cryptographically enforced
CFI scheme with no …
adversaries applications attacks call code control countermeasures cpu critical detection enable encryption flow functions hardware high integrity program protect security software