Patent · US Active

RISC-V and O-CFI mechanism-based defense method and apparatus for code reuse attacks

US12417287B2 · kind B2 · utility

0Cited by

0References

7Claims

0Family size

Assignee

INSTITUTE OF SOFTWARE, CHINESE ACADEMY OF SCIENCES · CN

Inventors

Yanjun Wu · Tangxia, CN
Chang-Miao Liu · Hsinchu, TW
Chen Zhao · Hangzhou City, CN
Jingzheng Wu · Beijing, CN
Zhiqing Rui · Beijing, CN
Bin Wu · Toronto, CA
Tianyue Luo · Beijing, CN

Key dates

Filing date	Dec 3, 2021
Grant date	Sep 16, 2025
Priority date	—
Expiry date	Dec 18, 2041

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/033
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Disclosed are a RISC-V and O-CFI mechanism-based defense method and apparatus for code reuse attacks, comprising: constructing a control flow graph according to program source codes randomized in a basic block order; on the basis of the control flow graph, obtaining a boundary range of a control flow transfer branch; executing the program source codes, obtaining a target node to which each control flow is to be transferred, and analyzing each target node in combination with the boundary range so as to defend against an abnormal control flow. The present invention can identify an illegal control flow transfer with the assistance of RISC-V security hardware according to the characteristics of a program control flow itself, and effectively handle code reuse attacks, thereby enhancing the security defense capabilities of an RISC-V system.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.