Secure Lean Binary Code

Abstract

Abstract Modern software engineering practice heavily relies on third party libraries, existing frameworks, high level programming languages, and agile development methodologies, which allows us to build more complex software and deliver it faster. However, on the other hand, such practice causes some negative consequences such as bloatware and feature creep. When such an application is running in the system, inside its address space, they are unused (library) code, which exposes extra attack surface that gives an attacker more choices in launching, for example, code reuse attacks. The unused yet shared library code also reduces the software diversity among the applications. Removing such unused code from each address space will not only lead to leaner and more efficient code, but also enable the computer systems to achieve better “vertical” application-application isolation, reduced attack surface, and enhanced diversity. In this proposed project, we aim to build infrastructure and technologies for software customization, especially for libraries at binary code level. Upon completion of the project, we will have a set of new capabilities to achieve better isolation, less sharing, and less dependencies between code, and to implicitly diversify software.

Document Details

Document Type

DoD Grant Award

Publication Date

Jun 03, 2016

Source ID

N000141612265

Entities

Tags