首页|CToMP:a cycle-task-oriented memory protection scheme for unmanned systems

CToMP:a cycle-task-oriented memory protection scheme for unmanned systems

扫码查看
原文链接
  • NETL
  • NSTL
  • 万方数据
Memory corruption attacks(MCAs)refer to malicious behaviors of system intruders that modify the contents of a memory location to disrupt the normal operation of computing systems,causing leakage of sensitive data or perturbations to ongoing processes.Unlike general-purpose systems,unmanned systems cannot deploy complete security protection schemes,due to their limitations in size,cost and performance.MCAs in unmanned systems are particularly difficult to defend against.Furthermore,MCAs have diverse and unpredictable attack interfaces in unmanned systems,severely impacting digital and physical sectors.In this paper,we first generalize,model and taxonomize MCAs found in unmanned systems currently,laying the foundation for designing a portable and general defense approach.According to different attack mechanisms,we found that MCAs are mainly categorized into two types—return2libc and return2shellcode.To tackle return2libc attacks,we model the erratic operation of unmanned systems with cycles and then propose a cycle-task-oriented memory protection(CToMP)approach to protect control flows from tampering.To defend against return2shellcode attacks,we introduce a secure process stack with a randomized memory address by leveraging the memory pool to prevent Shellcode from being executed.Moreover,we discuss the mechanism by which CToMP resists the return-oriented programming(ROP)attack,a novel variant of return2libc attacks.Finally,we implement CToMP on CUAV V5+with Ardupilot and Crazyflie.The evaluation and security analysis results demonstrate that the proposed approach CToMP is resilient to various MCAs in unmanned systems with low footprints and system overhead.

unmanned systemmemory corruption attackmemory protectionsystem securityrandomized memory address

Chengyan MA、Ning XI、Di LU、Yebo FENG、Jianfeng MA

展开 >

School of Cyber Engineering,Xidian University,Xi'an 710071,China

School of Computer Science and Technology,Xidian University,Xi'an 710071,China

Department of Computer and Information Science,University of Oregon,Eugene 97403,USA

Key Program of the National Natural Science Foundation of ChinaFundamental Research Funds for the Central UniversitiesFundamental Research Funds for the Central UniversitiesMajor Research Plan of the National Natural Science Foundation of ChinaNational Natural Science Foundation of ChinaKey Research and Development Program of ShaanxiKey R&D Program of Shandong Province,ChinaShenzhen Science and Technology Program

62232013ZYTS23202YJSJ2300792267204623723502023-ZDLGY-522023CXPT056CJGJZD20220517142005013

2024

10.1007/s11432-023-3865-0

中国科学:信息科学(英文版)
中国科学院

中国科学:信息科学(英文版)

CSTPCDEI
影响因子:0.715
ISSN:1674-733X
年,卷(期):2024.67(6)