Buffer overflow attack defense method and device based on RISC-V and Canny mechanisms

Abstract

The invention discloses a buffer overflow attack defense method and device based on RISC-V and Canny mechanisms, and the method comprises the steps: giving a content attribute to an abstract syntax tree of a program source code, and generating a node calling relation graph G; generating special data Cannary; before a code statement corresponding to the attribute of each calling node and before a code statement corresponding to the attribute of each returning node, inserting an RISC-V extension instruction for setting the special data Canary and an RISC-V extension instruction for checking the special data Canary; and executing the program source code, setting an RISC-V extension instruction of the special data Cannary to write the special data Cannary into the current stack frame, and checking a comparison result of the RISC-V extension instruction of the special data Cannary through a value p of the special data Cannary and a value p'of the special data Cannary obtained from the current stack frame so as to perform defense. Multiple buffer overflow forms such as heap overflow, stack overflow and BSS overflow are comprehensively covered, software and hardware cooperation of security defense can be achieved, the influence on system performance is small, and a better defense effect is obtained.

Description

technical field [0001] The invention belongs to the technical field of computers, and relates to a buffer overflow attack defense method and device based on RISC-V and Canary mechanisms. Background technique [0002] With the development of the computer industry, computer software has become an indispensable part of production and life. Computer systems are widely used in various industries, including medical, education, military, political and new retail fields. With the rapid development and popularization of computer systems, how to ensure the credibility of its behavior and protect it from malicious attacks has become an important issue of common concern in both academia and industry. Buffer overflow attack is a common means of malicious attack, which uses the lack of boundary checking and other mechanisms in source programs written in memory-unsafe languages, breaks through the buffer capacity limit, and overwrites data content in other areas, thereby destroying the cor...

AI Technical Summary

Problems solved by technology

However, this method is only applicable to stack overflow scenarios caused by the lack of necessary boundary checks in string processing, for other buffer overflow forms such as heap overflow, BSS (Block Started by Symbol, blocks starting with symbols) overflow, and other reasons overflow scenarios caused by the lack of equally effective protection

At the same time, this method requires an additional calculation process to construct the Canary word, which will also have a certain impact on the operating efficiency of the system.

[0005] In order to solve the problem that the buffer overflow attack defense method based on the Canary mechanism is limited in scope and difficult to implement, the present invention proposes an implementation scheme based on the RISC-V extended instruction set

Images