filmov
tv
NDSS 2018 Superset Disassembly: Statically Rewriting x86 Binaries Without Heuristics
Показать описание
NDSS 2018 Session 5A: Software Security
04 Superset Disassembly: Statically Rewriting x86 Binaries Without Heuristics
SUMMARY
Static binary rewriting is a core technology for many systems and security applications, including profiling, optimization, and software fault isolation. While many static binary rewriters have been developed over the past few decades, most make various assumptions about the binary, such as requiring correct disassembly, cooperation from compilers, or access to debugging symbols or relocation entries. This paper presents MULTIVERSE, a new binary rewriter that is able to rewrite Intel CISC binaries without these assumptions. Two fundamental techniques are developed to achieve this: (1) a superset disassembly that completely disassembles the binary code into a superset of instructions in which all legal instructions fall, and (2) an instruction rewriter that is able to relocate all instructions to any other location by mediating all indirect control flow transfers and redirecting them to the correct new addresses. A prototype implementation of MULTIVERSE and evaluation on SPECint 2006 benchmarks shows that MULTIVERSE is able to rewrite all of the testing binaries with a reasonable runtime overhead for the new rewritten binaries. Simple static instrumentation using MULTIVERSE and its comparison with dynamic instrumentation shows that the approach achieves better average performance. Finally, the security applications of MULTIVERSE are exhibited by using it to implement a shadow stack.
SLIDES
PAPER
SLIDES
AUTHORS
Erick Bauman (University of Texas at Dallas)
Zhiqiang Lin (University of Texas at Dallas)
Kevin Hamlen (University of Texas at Dallas)
Network and Distributed System Security (NDSS) Symposium 2018, 18-21 February 2018, Catamaran Resort Hotel & Spa in San Diego, California.
ABOUT NDSS
The Network and Distributed System Security Symposium (NDSS) fosters information exchange among researchers and practitioners of network and distributed system security. The target audience includes those interested in practical aspects of network and distributed system security, with a focus on actual system design and implementation. A major goal is to encourage and enable the Internet community to apply, deploy, and advance the state of available security technologies.
#NDSS #NDSS18 #NDSS2018 #InternetSecurity
04 Superset Disassembly: Statically Rewriting x86 Binaries Without Heuristics
SUMMARY
Static binary rewriting is a core technology for many systems and security applications, including profiling, optimization, and software fault isolation. While many static binary rewriters have been developed over the past few decades, most make various assumptions about the binary, such as requiring correct disassembly, cooperation from compilers, or access to debugging symbols or relocation entries. This paper presents MULTIVERSE, a new binary rewriter that is able to rewrite Intel CISC binaries without these assumptions. Two fundamental techniques are developed to achieve this: (1) a superset disassembly that completely disassembles the binary code into a superset of instructions in which all legal instructions fall, and (2) an instruction rewriter that is able to relocate all instructions to any other location by mediating all indirect control flow transfers and redirecting them to the correct new addresses. A prototype implementation of MULTIVERSE and evaluation on SPECint 2006 benchmarks shows that MULTIVERSE is able to rewrite all of the testing binaries with a reasonable runtime overhead for the new rewritten binaries. Simple static instrumentation using MULTIVERSE and its comparison with dynamic instrumentation shows that the approach achieves better average performance. Finally, the security applications of MULTIVERSE are exhibited by using it to implement a shadow stack.
SLIDES
PAPER
SLIDES
AUTHORS
Erick Bauman (University of Texas at Dallas)
Zhiqiang Lin (University of Texas at Dallas)
Kevin Hamlen (University of Texas at Dallas)
Network and Distributed System Security (NDSS) Symposium 2018, 18-21 February 2018, Catamaran Resort Hotel & Spa in San Diego, California.
ABOUT NDSS
The Network and Distributed System Security Symposium (NDSS) fosters information exchange among researchers and practitioners of network and distributed system security. The target audience includes those interested in practical aspects of network and distributed system security, with a focus on actual system design and implementation. A major goal is to encourage and enable the Internet community to apply, deploy, and advance the state of available security technologies.
#NDSS #NDSS18 #NDSS2018 #InternetSecurity
0:19:21
NDSS 2018 Superset Disassembly: Statically Rewriting x86 Binaries Without Heuristics
0:15:01
XDA: Accurate, Robust Disassembly with Transfer Learning
0:15:01
NDSS 2021 XDA: Accurate, Robust Disassembly with Transfer Learning
0:18:02
NDSS 2018 SYNODE: Understanding and Automatically Preventing Injection Attacks on NODE.JS
0:21:21
NDSS 2018 K-Miner: Uncovering Memory Corruption in Linux
0:16:21
NDSS 2018 Enhancing Memory Error Detection for Large-Scale Applications and Fuzz Testing
0:40:08
REcon 2014 Rewriting x86 Binaries (wartortell)
1:10:58
NDSS 2018 Closing Keynote - Parisa Tabriz
0:20:16
NDSS 2020 Decentralized Control: A Case Study of Russia
0:01:01
Usenix Security 2015 Lightning Talk (subtitles)
0:01:01
Usenix Security 2015 Lightning Talk
0:19:01
SoK: Shining Light on Shadow Stacks
0:56:19
C/C++ vs Security! - Gynvael Coldwind - code::dive 2018
0:53:53
Heng Yin (UC Riverside)
0:40:35
ACM CCS 2017 - SGX Security and Privacy - Zhiqiang Lin
0:59:29
36C3 - No source, no problem! High speed binary fuzzing
0:56:43
2019 HoTSoS Keynote: Toward a Science of Cyberdeception
0:49:03
Diego Provinciani - ROP Chain Execution Detection Using Intel PT - Ekoparty 2018
1:42:50
Bitwise, Day 65: Self-Hosting Compiler Rewrite, Part 2
0:05:55
Bill Hamlen Memorial Service - Going Home
1:06:28
IARPA SoURCE CODE Proposers' Day Lightning Talks
Комментарии