一种基于内存隔离的关键数据保护机制

doi:10.3969/j.issn.1006-2475.2016.02.017

计算机与现代化

一种基于内存隔离的关键数据保护机制

上海交通大学并行与分布式系统实验室，上海200240

收稿日期:2015-12-17 出版日期:2016-03-02 发布日期:2016-03-03
作者简介: 陈可昕(1990-),女,重庆人，上海交通大学并行与分布式系统实验室硕士研究生,研究方向：系统安全；刘宇涛(1989-),男,博士，研究方向:系统安全,系统虚拟化。
基金资助:
国家自然科学基金青年科学基金资助项目（61303011）; 上海张江国家自主创新示范区专项发展资金重点项目(201501-YP-B108-012)

Elimination of Memory Disclosure Attacks Using Data Isolation

Parallel and Distributed System Laboratory, Shanghai Jiao Tong University, Shanghai 200240， China

Received:2015-12-17 Online:2016-03-02 Published:2016-03-03

摘要/Abstract

摘要： 随着人们发现越来越多的内存信息泄露漏洞，内存关键数据的安全变得越来越重要。当前业界对于保护内存关键数据安全的主流方案是进行内存隔离。然而，现有的方案缺乏对关键数据的细粒度保护，同时大部分方案需要手动修改代码。本文提出一种方案，该方案能够完整地跟踪程序中的所有涉及关键数据的操作，并在编译器自动进行代码转换，不需要手动更改代码。测试结果表明，该方案能够防止大型程序中的内存泄露攻击，例如OpenSSL中的Heartbleed，同时编译期开销低于1%，运行时开销与同类型系统持平。

关键词: , 内存信息泄露攻击, 内存数据隔离

Abstract: As more and more memory-disclosure bugs been discovered, it’s important to protect memory safety. Nowadays mainstream of this field prefers enforcing memory isolation to protect memory safety. However, none of them can achieve a fine-grained protection while easy-to-deploy solution since most solutions requires manually modification to source code, or they enforce memory isolation in a coarse-grained way. We present a novel method, which can traces and collects all possible operations that access the sensitive data in runtime, and can perform automatically code transformation during compilation. Our solution do not require manually modification, and evaluation shows that we can efficiently eliminate memory disclosure attacks, such as Heartbleed, found in OpenSSL. Meanwhile, the overhead of compilation and memory cost are lower than 1%.

Key words: memory disclosure attacks, memory data isolation

陈可昕，刘宇涛. 一种基于内存隔离的关键数据保护机制[J]. 计算机与现代化, doi: 10.3969/j.issn.1006-2475.2016.02.017.

CHEN Ke-xin, LIU Yu-tao. Elimination of Memory Disclosure Attacks Using Data Isolation[J]. Computer and Modernization, doi: 10.3969/j.issn.1006-2475.2016.02.017.

参考文献

［1］ George C Necula, Scott McPeak, Shree P Rahul, et al. CIL: Intermediate language and tools for analysis and transformation of C programs［C］// Conference on Compiler Construction. 2002:213-228.
［2］ Nick S. Answering the Critical Question: Can You Get Private SSL Keys Using Heartbleed? ［EB/OL］. https://blog.cloudflare.com/answering-the-critical-question-can-you-get-private-ssl-keys-using-heartbleed/, 2014-04-11.
［3］ Indutny. Cracking Cloudflare’s Heartbleed Challenging［EB/OL］. http://darksi.de/9.heartbleed/, 2014-04-15.
［4］ Owen H, Sangman K, Alan D, et al. InkTag: Secure applications on an untrusted operating system［J］. ACM SIGPLAN Notices, 2013,48(4):265-278.
［5］ Jonh G. Searching for The Prime Suspect: How Heartbleed Leaked Private Keys［EB/OL］. https://blog.cloudflare.com/searching-for-the-prime-suspect-how-heartbleed-leaked-private-keys/, 2014-04-27.
［6］ Liu Yutao, Zhou Tianyu, Chen Kexin, et al. Thwarting memory disclosure 〖HJ1.75mm〗with efficient hypervisor-enforced intra-domain isolation［C］// Proceedings of the 22th ACM Conference on Computer and Communications Security. 2015.
［7］ Andrew B, Marcus P, Galen H. Shielding applications from an untrusted cloud with haven［C］// The 11th USENIX Symposium on Operating Systems Design and Implementation. 2014.
［8］ Criswell J, Dautenhahn N, Adve V. Virtual ghost: Protecting applications from hostile operating systems［C］// Proceedings of the 19th International Conference on Architectural Support for Programming Languages and Operating Systems. 2014.
［9］ Steve C. 2011 CWE/SANS Top 25 Most Dangerous Software Errors［EB/OL］.http://cwe.mitre.org/top25/, 2011-09-13.
［10］Akamai Technology.Akamai［EB/OL］. http://www.akamai.cn/enzs/, 2015-12-16.
［11］Evtyushkin D, Elwell J, Ozsoy M, et al. Iso-X: A flexible architecture for hardware-managed isolated execution［C］// Proceedings of the Annual International Symposium on Microarchitecture. 2015:190-202.
［12］Akamai Technology. Secure heap patch for OpenSSL heartbleed vulnerability［ED/OL］. http://www.mail-archive.com/openssl-users@openssl.org/msg73503.html, 2015-12-16.
［13］Yang J, Shin K G. Using hypervisor to provide data secrecy for user applications on a per-page basis［C］// Proceedings of the 4th International Conference on Virtual Execution Environments. 2008:71-80.
［14］The Heartbleed Bug［EB/OL］.http://heartbleed.com/, 2014-04-29.
［15］Popularity contest statistics for OpenSSL［EB/OL］. https://qa.debian.org/popcon.php?package=openssl, 2015-12-30.
［16］Novark G, Berger E D. Dieharder:Securing the heap［C］// Proceedings of the 17th ACM Conference on Computer and Communications Security. 2010:573-584.
［17］Chen X, Garfinkel T, Lewis E C, et al. Overshadow: A virtualization-based approach to retrofitting protection in commodity operating systems［C］// Proceedings of the 13th International Conference on Architectural Support for 〖JP4〗Programming Languages and Operating Systems. 2008,42:2-13.
［18］Brumley D, Song D. Privtrans: Automatically partitioning programs for privilege separation［C］// Proceedings of the 13th USENIX Security Symposium. 2004:57-72.
［19］David A W. How to Prevent the Next Heartbleed［EB/OL］. http://www.dwheeler.com/essays/heartbleed.html, 2014-04-29.
［20］OpenWrt. OpenSSL Benchmarks［EB/OL］.https://wiki.openwrt.org/inbox/benchmark.openssl, 2015-12-30.
［21］McCune J M, Li Y, Qu N, et al. TrustVisor: Efficient TCB reduction and attestation［C］// IEEE Symposium on Security and Privacy-S&P. 2010:143-158.
［22］Kerneis. The CIL Driver［ED/OL］. http://www.cs.berkekey.edu/~necula/cil/cil007.html, 2015-12-16.
［23］Chen Haibo, Chen Jieyun, Mao Wenbo, et al. Daonity-grid security from two levels of virtualization［J］. Information Security Technical Report, 2007,12(3):123-138.
［24］Chen Haibo, Zhang Fengzhe, Chen Cheng, et al. Tamper-resistant Execution in an Untrusted Operating System Using a Virtual Machine Monitor［R］. Technical Report, FDUPPITR-2007-0801, 2007.
［25］RSA Algorithm［EB/OL］. https://en.wikipedia.org/wiki/RSA, 2015-12-30.

[1]	李静元, 张珂, 杨东裕. 基于雾计算的工业互联网安全数据访问方法[J]. 计算机与现代化, 2022, 0(12): 118-122.
[2]	陈春燕, 刘梦赤. 基于粒子群遗传算法的智能组卷策略[J]. 计算机与现代化, 2021, 0(08): 16-23.
[3]	宋鑫, 樊志强, . 基于Laguerre 前向神经网络的信息服务性能建模方法 [J]. 计算机与现代化, 2021, 0(03): 1-6.
[4]	魏健, 赵红涛, 刘敦楠, 加鹤萍 . 基于集成模型的超短时负荷预测方法[J]. 计算机与现代化, 2021, 0(03): 12-17.
[5]	段桂芹1，邹臣嵩2，刘锋2. 基于优化初始聚类中心的K中心点算法[J]. 计算机与现代化, 2019, 0(04): 1-.
[6]	李富星，蒙祖强 . 一种改进的类别区分词特征选择算法[J]. 计算机与现代化, 2019, 0(03): 73-.
[7]	白晓波1，邵景峰1，和征1，田建刚2. 基于学习的核偏最小二乘法优化扩展卡尔曼滤波[J]. 计算机与现代化, 2018, 0(09): 110-.
[8]	郑亚鹏，樊璐. 基于LSTM的临床血液需求预测方法[J]. 计算机与现代化, 2018, 0(05): 41-.
[9]	刘德春1，张秀国2，姜微2. 基于马尔科夫链的大学生自主学习能力预测方法[J]. 计算机与现代化, 2018, 0(05): 106-.
[10]	夏琨1，丁波1，刘俊1，刘子豪1，林亮成2. 基于内容分析的网络协议指纹识别[J]. 计算机与现代化, 2018, 0(05): 121-.
[11]	李华，江峰，于旭，杜军威，刘国柱. 基于粒度决策熵的属性约简[J]. 计算机与现代化, 2018, 0(04): 7-.
[12]	陈丽娟，谢伙生. 带负项值的onshelf效用项集并行挖掘算法[J]. 计算机与现代化, 2018, 0(04): 13-.
[13]	吴克介,王家伟. 基于知网与搜索引擎的词汇语义相似度计算[J]. 计算机与现代化, 2018, 0(04): 90-.
[14]	曲晓燕1，张勇亮2，吕晓峰1，马羚1. 基于模糊粒度相关向量机的缓变故障参数区间预测[J]. 计算机与现代化, 2017, 0(8): 5-.
[15]	付永忠，潘云峰. 基于改进蚁群算法的垂直旋转式贴片机贴装顺序优化[J]. 计算机与现代化, 2017, 0(8): 17-.

一种基于内存隔离的关键数据保护机制

Elimination of Memory Disclosure Attacks Using Data Isolation

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

本文评价