Paper Info
Title
TrustFlow-X: A Practical Framework for Fine-grained Control-flow Integrity in Critical Systems
Abstract
AbstractThis article addresses the challenges of memory safety in life-critical medical devices. Since the last decade, healthcare manufacturers have embraced the Internet of Things, pushing technological innovations to increase market share. Medical devices, including the most critical ones, tend to be increasingly connected to the Internet. Unfortunately, as critical devices often rely on unsafe programming languages such as C, they are no exception to memory safety issues. Given a memory vulnerability, a skillful attacker can take over a system and perform remote code execution. Combined with the fact that medical devices directly impact the safety of their users, a security vulnerability can lead to disastrous scenarios. To address this issue, this article presents TrustFlow-X, a novel hardware/software co-designed framework that provides efficient fine-grained control-flow integrity protection against memory-based attacks. The TrustFlow-X framework is composed of an LLVM-based compiler toolchain that generates a secure code. This secure code is then executed on an extended RISC-V processor that keeps track of sensitive data using a trusted memory. The obtained results show that the contribution is practical, providing a high level of trust in life-critical embedded systems.
Year
DOI
Venue
2020
10.1145/3398327
ACM Transactions on Embedded Computing Systems
Keywords
DocType
Volume
Memory safety, control-flow integrity, compiler, processor architecture
Journal
19
Issue
ISSN
Citations 
5
1539-9087
0
PageRank 
References 
Authors
0.34
0
5
Name
Order
Citations
PageRank
Cyril Bresch152.19
David Hély28921.91
Roman Lysecky360560.43
Stéphanie Chollet4658.88
Ioannis Parissis500.34