μShield: Configurable Code-Reuse Attacks Mitigation For Embedded Systems

Ali Abbasi, Jos Wetzels, Wouter Bokslag, Emmanuele Zambon, Sandro Etalle

International Conference on Network and System Security, August 2017, Helsinki, Finland.


Abstract

Embedded devices are playing a major role in our way of life. Similar to other computer systems embedded devices are vulnerable to code-reuse attacks. Compromising these devices in a critical environment constitute a significant security and safety risk. In this paper, we present μShield, a memory corruption exploitation mitigation system for embedded COTS binaries with configurable protection policies that do not rely on any hardware-specific feature. Our evaluation shows that μShield provides its protection with a limited performance overhead.

[PDF]

Tags: