Patent · US Active

Software security via control flow integrity checking

US10242043B2 · kind B2 · utility

1Cited by

8References

18Claims

0Family size

Assignee

Galois, Inc. · US

Inventors

Lee Pike · Portland, US
Patrick Christopher Hickey · Portland, US
Aaron Tomb · Portland, US
Eric Mertens · Portland, US

Key dates

Filing date	Dec 14, 2017
Grant date	Mar 26, 2019
Priority date	—
Expiry date	Dec 14, 2037

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/566
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Various technologies related to control flow integrity checking are described herein and can be used to greatly improve software security. During static analysis, a canonical control flow graph can be built. Execution of a program can be interrupted at runtime, and the call stack can be observed to verify control flow integrity of the program using the canonical control flow graph. Attacks using stack tampering can be avoided, regardless of how the stack tampering is achieved. Non-invasive techniques can be used, making the technologies applicable in situations where source code is not available. Real-time operating system protection can be supported.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.