Position paper: GPT conjecture: understanding the trade-offs between granularity, performance and timeliness in control-flow integrity
Abstract
Performance/security trade-off is widely noticed in CFI research, however, we observe that not every CFI scheme is subject to the trade-off. Motivated by the key observation, we ask three questions: ➊ does trade-off really exist in different CFI schemes? ➋ if trade-off do exist, how do previous works comply with it? ➌ how can it inspire future research? Although the three questions probably cannot be directly answered, they are inspiring. We find that a deeper understanding of the nature of the trade-off will help answer the three questions. Accordingly, we proposed theGPTconjecture to pinpoint the trade-off in designing CFI schemes, which says that at most two out of three properties (fine granularity, acceptable performance, and preventive protection) could be achieved.
Document Details
- Document Type
- Pub Defense Publication
- Publication Date
- Sep 16, 2021
- Source ID
- 10.1186/s42400-021-00098-2
Entities
People
- Peng Liu
- Zhilong Wang
Organizations
- Army Research Office
- National Science Foundation