Write a Blog >>
PLDI 2020
Mon 15 - Fri 19 June 2020
Wed 17 Jun 2020 16:40 - 17:00 at PLDI Research Papers live stream - Security Chair(s): Tony Hosking

Modern software systems make extensive use of libraries derived from C and C++. Because of the lack of memory safety in these languages, however, the libraries may suffer from vulnerabilities, which can expose the applications to potential attacks. For example, a very large number of return-oriented programming gadgets exist in glibc that allow stitching together semantically valid but malicious Turing-complete and -incomplete programs.
While CVEs get discovered and often patched and remedied, such gadgets serve as building blocks of future undiscovered attacks, opening an ever-growing set of possibilities for generating malicious programs. Thus, significant reduction in the quantity and expressiveness (utility) of such gadgets for libraries is an important problem.

In this work, we propose a new approach for handling an application's library functions that focuses on the principle of getting only what you want.'' This is a significant departure from the current approaches that focus oncutting what is unwanted.'' Our approach focuses on activating/deactivating library functions on demand in order to reduce the dynamically linked code surface, so that the possibilities of constructing malicious programs diminishes substantially. The key idea is to load only the set of library functions that will be used at each library call site within the application at runtime. This approach of demand-driven loading relies on an input-aware oracle that predicts a near-exact set of library functions needed at a given call site during the execution. The predicted functions are loaded just in time and unloaded on return.

We present a decision-tree based predictor, which acts as an oracle, and an optimized runtime system, which works directly with library binaries like GNU libc and libstdc++. We show that on average, the proposed scheme cuts the exposed code surface of libraries by 97.2%, reduces ROP gadgets present in linked libraries by 97.9%, achieves a prediction accuracy in most cases of at least 97%, and adds a runtime overhead of 18% on all libraries (16% for glibc, 2% for others) across all benchmarks of SPEC 2006. Further, we demonstrate BlankIt on two real-world applications, sshd and nginx, with a high amount of debloating and low overheads.

Wed 17 Jun
Times are displayed in time zone: (GMT-07:00) Pacific Time (US & Canada) change

pldi-2020-papers
16:00 - 17:00: PLDI Research Papers - Security at PLDI Research Papers live stream
Chair(s): Tony HoskingAustralian National University / Data61

YouTube lightning session video

pldi-2020-papers16:00 - 16:20
Talk
Fraser BrownStanford University, USA, John RennerUniversity of California at San Diego, USA, Andres NötzliStanford University, USA, Sorin LernerUniversity of California at San Diego, USA, Hovav ShachamUniversity of Texas at Austin, USA, Deian StefanUniversity of California at San Diego, USA
pldi-2020-papers16:20 - 16:40
Talk
Gregory J. DuckNational University of Singapore, Singapore, Xiang GaoNational University of Singapore, Singapore, Abhik RoychoudhuryNational University of Singapore, Singapore
pldi-2020-papers16:40 - 17:00
Talk
Chris PorterGeorgia Institute of Technology, USA, Girish MururuGeorgia Institute of Technology, USA, Prithayan BaruaGeorgia Institute of Technology, USA, Santosh PandeGeorgia Institute of Technology, USA