R5Detect: Detecting Control-Flow Attacks from Standard RISC-V Enclaves

arXiv:2404.03771v1 Announce Type: new
Abstract: Embedded and Internet-of-Things (IoT) devices are ubiquitous today, and the uprising of several botnets based on them (e.g., Mirai, Ripple20) raises issues about the security of such devices. Especially low-power devices often lack support for modern system security measures, such as stack integrity, Non-eXecutable bits or strong cryptography.
In this work, we present R5Detect, a security monitoring software that detects and prevents control-flow attacks on unmodified RISC-V standard architectures. With a novel combination of different …

arxiv attacks bits botnets control cs.cr devices embedded flow integrity internet iot low mirai non power risc-v security security measures stack standard support system system security things today