Share on Facebook Tweet on Twitter Share on LinkedIn Share by email
A Theory of Secure Control-Flow

Martín Abadi, Mihai Budiu, Úlfar Erlingsson, and Jay Ligatti

Abstract

Control-Flow Integrity (CFI) means that the execution of a program dynamically follows only certain paths, in accordance with a static policy. CFI can prevent attacks that, by exploiting buffer overflows and other vulnerabilities, attempt to control program behavior. This paper develops the basic theory that underlies two practical techniques for CFI enforcement, with precise formulations of hypotheses and guarantees.

Details

Publication typeInproceedings
Published inInternational Conference on Formal Engineering Methods (ICFEM)
URLhttp://www.springer-ny.com/
Pages111-124
NumberMSR-TR-2005-17
InstitutionMicrosoft Research
AddressManchester, UK
PublisherSpringer-Verlag
> Publications > A Theory of Secure Control-Flow