TECHNIQUES FOR ENFORCING CONTROL FLOW INTEGRITY USING BINARY TRANSLATION

US 20170316201A1
Filed: 02/13/2017
Published: 11/02/2017
Est. Priority Date: 12/23/2014
Status: Active Application

First Claim

Patent Images

1-27. -27. (canceled)

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Various embodiments are generally directed to an apparatus, method and other techniques to determine a valid target address for a branch instruction from information stored in a relocation table, a linkage table, or both, the relocation table and the linkage table associated with a binary file and store the valid target address in a table in memory, the valid target address to validate a target address for a translated portion of a routine of the binary file.

54 Citations

View as Search Results

52 Claims

1-27. -27. (canceled)

28. An apparatus, comprising:
- a memory; and
  
  logic for control flow integrity, at least a portion of the logic implemented in circuitry coupled to the memory, the logic to;
  
  determine whether a translated instruction includes an indirect branch instruction in response to execution of an application associated with the translated instruction;
  
  determine whether the translated instruction includes one of a set of valid stack modification instructions when the translated instruction excludes indirect branch instructions;
  
  execute the translated instruction when the translated instruction includes a valid stack modification instruction in the set; and
  
  initiate a security measure when the translated instruction excludes the set of valid stack modification instructions.
- View Dependent Claims (29, 30, 31, 32, 33, 34, 35, 36)
- - 29. The apparatus of claim 28, determination of whether the translated instruction includes one of a set of valid stack modification instructions to include logic to:
    - determine whether the translated instruction includes a stack modification instruction in response to a determination the translated instruction excludes an indirect branch instruction;
      
      execute the translated instruction when the translated instruction excludes a stack modification instruction; and
      
      determine whether the translated instruction includes a valid stack modification when the translated instruction includes a stack modification instruction.
  - 30. The apparatus of claim 29, determination of whether the translated instruction includes a valid stack modification to include logic to determine whether the translated instruction modifies a stack pointer within a predetermined set of valid boundaries.
  - 31. The apparatus of claim 28, the logic to execute a stub instruction associated with the translated instruction when the translated instruction includes an indirect branch instruction.
  - 32. The apparatus of claim 31, the logic to:
    - determine whether the translated instruction includes one of a set of valid target addresses in response to execution of the stub instruction;
      
      execute the translated instruction when the translated instruction includes a valid target address in the set; and
      
      initiate the security measure when the translated instruction excludes the set of valid target addresses.
  - 33. The apparatus of claim 32, determination of whether the translated instruction includes one of the set of valid target addresses to include logic to validate the translated instruction with information in a fast lookup table.
  - 34. The apparatus of claim 33, the logic to compare an intended target address associated with the translated instruction to information in the fast lookup table to determine whether the translated instruction includes a valid target address in the set.
  - 35. The apparatus of claim 28, the security measure to include an interruption of execution of the application associated with the translated instruction or an indication to a security agent or anti-virus program.
  - 36. The apparatus of claim 28, the logic to initiate execution of the application associated with the translated instruction.

37. At least one non-transitory computer-readable medium comprising a set of instructions that, in response to being executed by a processor circuit, cause the processor circuit to:
- determine whether a translated instruction includes an indirect branch instruction in response to execution of an application associated with the translated instruction;
  
  determine whether the translated instruction includes one of a set of valid stack modification instructions when the translated instruction excludes an indirect branch instruction;
  
  execute the translated instruction when the translated instruction includes a valid stack modification instruction in the set; and
  
  initiate a security measure when the translated instruction excludes the set of valid stack modification instruction.
- View Dependent Claims (38, 39, 40, 41, 42, 43, 44, 45)
- - 38. The at least one non-transitory computer-readable medium of claim 37, determination of whether the translated instruction includes one of a set of valid stack modification instructions comprising instructions that, in response to being executed by the processor circuit, cause the processor circuit to:
    - determine whether the translated instruction includes a stack modification instruction in response to a determination the translated instruction excludes an indirect branch instruction;
      
      execute the translated instruction when the translated instruction excludes a stack modification instruction; and
      
      determine whether the translated instruction includes a valid stack modification when the translated instruction includes a stack modification instruction.
  - 39. The at least one non-transitory computer-readable medium of claim 38, determination of whether the translated instruction includes a valid stack modification comprising instructions that, in response to being executed by the processor circuit, cause the processor circuit to determine whether the translated instruction modifies a stack pointer within a predetermined set of valid boundaries.
  - 40. The at least one non-transitory computer-readable medium of claim 37, comprising instructions that, in response to being executed by the processor circuit, cause the processor circuit to execute a stub instruction associated with the translated instruction when the translated instruction includes an indirect branch instruction.
  - 41. The at least one non-transitory computer-readable medium of claim 40, comprising instructions that, in response to being executed by the processor circuit, cause the processor circuit to:
    - determine whether the translated instruction includes one of a set of valid target addresses in response to execution of the stub instruction;
      
      execute the translated instruction when the translated instruction includes a valid target address in the set; and
      
      initiate the security measure when the translated instruction excludes the set of valid target addresses.
  - 42. The at least one non-transitory computer-readable medium of claim 41, determination of whether the translated instruction includes one of the set of valid target addresses comprising instructions that, in response to being executed by the processor circuit, cause the processor circuit to validate the translated instruction with information in a fast lookup table.
  - 43. The at least one non-transitory computer-readable medium of claim 42, comprising instructions that, in response to being executed by the processor circuit, cause the processor circuit to compare an intended target address associated with the translated instruction to information in the fast lookup table to determine whether the translated instruction includes a valid target address in the set.
  - 44. The at least one non-transitory computer-readable medium of claim 37, the security measure to include an interruption of execution of the application associated with the translated instruction or an indication to a security agent or anti-virus program.
  - 45. The at least one non-transitory computer-readable medium of claim 37, comprising instructions that, in response to being executed by the processor circuit, cause the processor circuit to initiate execution of the application associated with the translated instruction.

46. A computer-implemented method, comprising:
- determining whether a translated instruction includes an indirect branch instruction in response to execution of an application associated with the translated instruction;
  
  determining whether the translated instruction includes one of a set of valid stack modification instructions when the translated instruction excludes an indirect branch instruction;
  
  executing the translated instruction when the translated instruction includes a valid stack modification instruction in the set; and
  
  initiating a security measure when the translated instruction excludes the set of valid stack modification instruction.
- View Dependent Claims (47, 48, 49, 50, 51, 52)
- - 47. The computer-implemented method of claim 46, determination of whether the translated instruction includes one of a set of valid stack modification instructions comprising:
    - determining whether the translated instruction includes a stack modification instruction in response to a determination the translated instruction excludes an indirect branch instruction;
      
      executing the translated instruction when the translated instruction excludes a stack modification instruction; and
      
      determining whether the translated instruction includes a valid stack modification when the translated instruction includes a stack modification instruction.
  - 48. The computer-implemented method of claim 47, determination of whether the translated instruction includes a valid stack modification comprising determining whether the translated instruction modifies a stack pointer within a predetermined set of valid boundaries.
  - 49. The computer-implemented method of claim 46, comprising executing a stub instruction associated with the translated instruction when the translated instruction includes an indirect branch instruction.
  - 50. The computer-implemented method of claim 49, comprising:
    - determining whether the translated instruction includes one of a set of valid target addresses in response to execution of the stub instruction;
      
      executing the translated instruction when the translated instruction includes a valid target address in the set; and
      
      initiating the security measure when the translated instruction excludes the set of valid target addresses.
  - 51. The computer-implemented method of claim 50, determination of whether the translated instruction includes one of the set of valid target addresses comprising validating the translated instruction with information in a fast lookup table.
  - 52. The computer-implemented method of claim 51, comprising comparing an intended target address associated with the translated instruction to information in the fast lookup table to determine whether the translated instruction includes a valid target address in the set.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intel Corporation
Original Assignee
Intel Corporation
Inventors
YAMADA, KOICHI, SHANMUGAVELAYUTHAM, PALANIVELRAJAN, KONDA, SRAVANI

Granted Patent

US 10,268,819 B2
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/54   by adding security routines...

G06F 8/30   Creation or generation of s...

G06F 8/52   Binary to binary

G06F 9/30061   Multi-way branch instructio...

G06F 9/4552   Involving translation to a ...

TECHNIQUES FOR ENFORCING CONTROL FLOW INTEGRITY USING BINARY TRANSLATION

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

54 Citations

52 Claims

Specification

Use Cases

Quick Links

Others

TECHNIQUES FOR ENFORCING CONTROL FLOW INTEGRITY USING BINARY TRANSLATION

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

54 Citations

52 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others