all InfoSec news
LoadLord: Loading on the Fly to Defend Against Code-Reuse Attacks. (arXiv:2303.12612v1 [cs.CR])
cs.CR updates on arXiv.org arxiv.org
Code-reuse attacks have become a kind of common attack method, in which
attackers use the existing code in the program to hijack the control flow. Most
existing defenses focus on control flow integrity (CFI), code randomization,
and software debloating. However, most fine-grained schemes of those that
ensure such high security suffer from significant performance overhead, and
only reduce attack surfaces such as software debloating can not defend against
code-reuse attacks completely. In this paper, from the perspective of shrinking
the …
attack attackers attacks code control flow focus high hijack integrity performance program randomization reuse security software