Defending Use-After-Free via Relationship Between Memory and Pointer

Guangquan Xu; Miao Li; Xiaotong Li; Kai Chen; Ran Wang; Wei Wang; Kaitai Liang; Qiang Tang; Shaoying Liu

doi:10.1007/978-3-030-67537-0_35

Defending Use-After-Free via Relationship Between Memory and Pointer

Guangquan Xu^*, Miao Li, Xiaotong Li, Kai Chen, Ran Wang, Wei Wang, Kaitai Liang, Qiang Tang, Shaoying Liu

^*Corresponding author for this work

Research output: Chapter in Book/Conference proceedings/Edited volume › Conference contribution › Scientific › peer-review

1 Citation (Scopus)

Abstract

Existing approaches to defending Use-After-Free (UAF) exploits are usually done using static or dynamic analysis. However, both static and dynamic analysis suffer from intrinsic deficiencies. The existing static analysis is limited in handling loops, optimization of memory representation. The existing dynamic analysis, which is characterized by lacking the maintenance of pointer information, may lead to flaws that the relationships between pointers and memory cannot be precisely identified. In this work, we propose a new method called UAF-GUARD without the above barriers, in the aim to defending against UAF exploits using fine-grained memory permission management. In particular, we design a key data structure to support the fine-grained memory permission management, which can maintain more information to capture the relationship between pointers and memory. Moreover, we design code instrumentation to enable UAF-GUARD to precisely locate the position of UAF vulnerabilities to further terminate malicious programs when anomalies are detected. We implement UAF-GUARD on a 64-bit Linux system. We carry out experiments to compare UAF-GUARD with the main existing approaches. The experimental results demonstrate that UAF-GUARD is able to effectively and efficiently defend against three types of UAF exploits with acceptable space overhead and time overhead.

Original language	English
Title of host publication	Collaborative Computing
Subtitle of host publication	Networking, Applications and Worksharing - 16th EAI International Conference, CollaborateCom 2020, Proceedings
Editors	Honghao Gao, Xinheng Wang, Muddesar Iqbal, Yuyu Yin, Jianwei Yin, Ning Gu
Publisher	Springer
Pages	583-597
Number of pages	15
ISBN (Print)	9783030675363
DOIs	https://doi.org/10.1007/978-3-030-67537-0_35
Publication status	Published - 2021
Externally published	Yes
Event	16th EAI International Conference on Collaborative Computing: Networking, Applications, and Worksharing, CollaborateCom 2020 - Shanghai, China Duration: 16 Oct 2020 → 18 Oct 2020

Publication series

Name	Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST
Volume	349
ISSN (Print)	1867-8211
ISSN (Electronic)	1867-822X

Conference

Conference	16th EAI International Conference on Collaborative Computing: Networking, Applications, and Worksharing, CollaborateCom 2020
Country/Territory	China
City	Shanghai
Period	16/10/20 → 18/10/20

Keywords

Fine-grained memory permission management
Static instrumentation
Use-after-free vulnerability

Access to Document

10.1007/978-3-030-67537-0_35

Cite this

Xu, G., Li, M., Li, X., Chen, K., Wang, R., Wang, W., Liang, K., Tang, Q., & Liu, S. (2021). Defending Use-After-Free via Relationship Between Memory and Pointer. In H. Gao, X. Wang, M. Iqbal, Y. Yin, J. Yin, & N. Gu (Eds.), Collaborative Computing: Networking, Applications and Worksharing - 16th EAI International Conference, CollaborateCom 2020, Proceedings (pp. 583-597). (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST; Vol. 349). Springer. https://doi.org/10.1007/978-3-030-67537-0_35

Xu, Guangquan ; Li, Miao ; Li, Xiaotong et al. / Defending Use-After-Free via Relationship Between Memory and Pointer. Collaborative Computing: Networking, Applications and Worksharing - 16th EAI International Conference, CollaborateCom 2020, Proceedings. editor / Honghao Gao ; Xinheng Wang ; Muddesar Iqbal ; Yuyu Yin ; Jianwei Yin ; Ning Gu. Springer, 2021. pp. 583-597 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST).

@inproceedings{ea5abdfcfb94418ea54baf5f77c215d2,

title = "Defending Use-After-Free via Relationship Between Memory and Pointer",

abstract = "Existing approaches to defending Use-After-Free (UAF) exploits are usually done using static or dynamic analysis. However, both static and dynamic analysis suffer from intrinsic deficiencies. The existing static analysis is limited in handling loops, optimization of memory representation. The existing dynamic analysis, which is characterized by lacking the maintenance of pointer information, may lead to flaws that the relationships between pointers and memory cannot be precisely identified. In this work, we propose a new method called UAF-GUARD without the above barriers, in the aim to defending against UAF exploits using fine-grained memory permission management. In particular, we design a key data structure to support the fine-grained memory permission management, which can maintain more information to capture the relationship between pointers and memory. Moreover, we design code instrumentation to enable UAF-GUARD to precisely locate the position of UAF vulnerabilities to further terminate malicious programs when anomalies are detected. We implement UAF-GUARD on a 64-bit Linux system. We carry out experiments to compare UAF-GUARD with the main existing approaches. The experimental results demonstrate that UAF-GUARD is able to effectively and efficiently defend against three types of UAF exploits with acceptable space overhead and time overhead.",

keywords = "Fine-grained memory permission management, Static instrumentation, Use-after-free vulnerability",

author = "Guangquan Xu and Miao Li and Xiaotong Li and Kai Chen and Ran Wang and Wei Wang and Kaitai Liang and Qiang Tang and Shaoying Liu",

year = "2021",

doi = "10.1007/978-3-030-67537-0_35",

language = "English",

isbn = "9783030675363",

series = "Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST",

publisher = "Springer",

pages = "583--597",

editor = "Honghao Gao and Xinheng Wang and Muddesar Iqbal and Yuyu Yin and Jianwei Yin and Ning Gu",

booktitle = "Collaborative Computing",

note = "16th EAI International Conference on Collaborative Computing: Networking, Applications, and Worksharing, CollaborateCom 2020 ; Conference date: 16-10-2020 Through 18-10-2020",

}

Xu, G, Li, M, Li, X, Chen, K, Wang, R, Wang, W, Liang, K, Tang, Q & Liu, S 2021, Defending Use-After-Free via Relationship Between Memory and Pointer. in H Gao, X Wang, M Iqbal, Y Yin, J Yin & N Gu (eds), Collaborative Computing: Networking, Applications and Worksharing - 16th EAI International Conference, CollaborateCom 2020, Proceedings. Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST, vol. 349, Springer, pp. 583-597, 16th EAI International Conference on Collaborative Computing: Networking, Applications, and Worksharing, CollaborateCom 2020, Shanghai, China, 16/10/20. https://doi.org/10.1007/978-3-030-67537-0_35

Defending Use-After-Free via Relationship Between Memory and Pointer. / Xu, Guangquan; Li, Miao; Li, Xiaotong et al.
Collaborative Computing: Networking, Applications and Worksharing - 16th EAI International Conference, CollaborateCom 2020, Proceedings. ed. / Honghao Gao; Xinheng Wang; Muddesar Iqbal; Yuyu Yin; Jianwei Yin; Ning Gu. Springer, 2021. p. 583-597 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST; Vol. 349).

Research output: Chapter in Book/Conference proceedings/Edited volume › Conference contribution › Scientific › peer-review

TY - GEN

T1 - Defending Use-After-Free via Relationship Between Memory and Pointer

AU - Xu, Guangquan

AU - Li, Miao

AU - Li, Xiaotong

AU - Chen, Kai

AU - Wang, Ran

AU - Wang, Wei

AU - Liang, Kaitai

AU - Tang, Qiang

AU - Liu, Shaoying

PY - 2021

Y1 - 2021

N2 - Existing approaches to defending Use-After-Free (UAF) exploits are usually done using static or dynamic analysis. However, both static and dynamic analysis suffer from intrinsic deficiencies. The existing static analysis is limited in handling loops, optimization of memory representation. The existing dynamic analysis, which is characterized by lacking the maintenance of pointer information, may lead to flaws that the relationships between pointers and memory cannot be precisely identified. In this work, we propose a new method called UAF-GUARD without the above barriers, in the aim to defending against UAF exploits using fine-grained memory permission management. In particular, we design a key data structure to support the fine-grained memory permission management, which can maintain more information to capture the relationship between pointers and memory. Moreover, we design code instrumentation to enable UAF-GUARD to precisely locate the position of UAF vulnerabilities to further terminate malicious programs when anomalies are detected. We implement UAF-GUARD on a 64-bit Linux system. We carry out experiments to compare UAF-GUARD with the main existing approaches. The experimental results demonstrate that UAF-GUARD is able to effectively and efficiently defend against three types of UAF exploits with acceptable space overhead and time overhead.

AB - Existing approaches to defending Use-After-Free (UAF) exploits are usually done using static or dynamic analysis. However, both static and dynamic analysis suffer from intrinsic deficiencies. The existing static analysis is limited in handling loops, optimization of memory representation. The existing dynamic analysis, which is characterized by lacking the maintenance of pointer information, may lead to flaws that the relationships between pointers and memory cannot be precisely identified. In this work, we propose a new method called UAF-GUARD without the above barriers, in the aim to defending against UAF exploits using fine-grained memory permission management. In particular, we design a key data structure to support the fine-grained memory permission management, which can maintain more information to capture the relationship between pointers and memory. Moreover, we design code instrumentation to enable UAF-GUARD to precisely locate the position of UAF vulnerabilities to further terminate malicious programs when anomalies are detected. We implement UAF-GUARD on a 64-bit Linux system. We carry out experiments to compare UAF-GUARD with the main existing approaches. The experimental results demonstrate that UAF-GUARD is able to effectively and efficiently defend against three types of UAF exploits with acceptable space overhead and time overhead.

KW - Fine-grained memory permission management

KW - Static instrumentation

KW - Use-after-free vulnerability

UR - http://www.scopus.com/inward/record.url?scp=85101347768&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-67537-0_35

DO - 10.1007/978-3-030-67537-0_35

M3 - Conference contribution

AN - SCOPUS:85101347768

SN - 9783030675363

T3 - Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST

SP - 583

EP - 597

BT - Collaborative Computing

A2 - Gao, Honghao

A2 - Wang, Xinheng

A2 - Iqbal, Muddesar

A2 - Yin, Yuyu

A2 - Yin, Jianwei

A2 - Gu, Ning

PB - Springer

T2 - 16th EAI International Conference on Collaborative Computing: Networking, Applications, and Worksharing, CollaborateCom 2020

Y2 - 16 October 2020 through 18 October 2020

ER -

Xu G, Li M, Li X, Chen K, Wang R, Wang W et al. Defending Use-After-Free via Relationship Between Memory and Pointer. In Gao H, Wang X, Iqbal M, Yin Y, Yin J, Gu N, editors, Collaborative Computing: Networking, Applications and Worksharing - 16th EAI International Conference, CollaborateCom 2020, Proceedings. Springer. 2021. p. 583-597. (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST). doi: 10.1007/978-3-030-67537-0_35

Defending Use-After-Free via Relationship Between Memory and Pointer

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this