MoCFI: A Framework to Mitigate Control-Flow Attacks on Smartphones.
Network and Distributed System Security Symposium (NDSS), The Internet Society, (February 2012)Abstract
Runtime and control-flow attacks (such as code injection or return-oriented programming) constitute one of the most severe threats to software programs. These attacks are prevalent and have been recently applied to smartphone applications as well, of which hundreds of thousands are downloaded by users every day. While a framework for control-flow integrity (CFI) enforcement, an approach to prohibit this kind of attacks, exists for the Intel x86 plat-form, there is no such a solution for smartphones.In this paper, we present a novel framework, MoCFI(Mobile CFI), that provides a general countermeasure against control-flow attacks on smartphone platforms by en-forcing CFI. We show that CFI on typical smartphone plat-forms powered by an ARM processor is technically involved due to architectural differences between ARM and Intel x86,as well as the specifics of smartphone OSes. Our framework performs CFI on-the-fly during runtime without requiring the application’s source code. For our reference implementation we chose Apple’s iOS, because it has been an attractive target for control-flow attacks. Nevertheless, our frame-work is also applicable to other ARM-based devices such as Google’s Android. Our performance evaluation demon-strates that MoCFI is efficient and does not induce notable overhead when applied to popular iOS applications.
