Presentation is loading. Please wait.

Presentation is loading. Please wait.

Bending Binary Programs to your Will Rajeev Barua.

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "Bending Binary Programs to your Will Rajeev Barua."— Presentation transcript:

1 Bending Binary Programs to your Will Rajeev Barua

2 What is a Binary Rewriter High-level language program (C, C++, Java, SQL,……) Binary executable program Binary executable program Improved Binary executable program Traditionally Recently Binary RewriterCompiler

3 Allows optimizations missed by compiler –Including inter-procedural optimization Portable across any language –No need for repeated compiler implementation Applicable to legacy codes and assembly level programs Enhanced security of binaries Advantages of Binary Rewriting

4 Flow of Compiler llvm-gccllvm-gfortran C, C++Fortran Code Improvement LLVM IR Machine Code Generator Layout Modifications Binary Reader Flow of Binary Rewriter LLVM IR

5 + Existing Binary Rewriters Commercial Binary Program Rewritten Commercial Binary Program Symbolic & Relocation Information Existing Binary Rewriter SecondWrite √

6 Improvement in Execution Speed –Automatic Parallelization –Better memory management Improvement of security and reliability –Protection against malicious attacks –Access control Applications of Binary Rewriting

7 Security Policy Enforcement in Binaries Security Policy Library Security Policy Library Binary Reader Code Improvement Layout ModificationsCode Generator System Call Detector Security check inserter

8 + Security Policy Enforcement Input Binary ProgramSecurity Policy SecondWrite Output Binary Security Policy

9 Enforcing a Policy on a Malicious Binary Malicious binary that deletes files under the /c/important directory. Run binary Deletes files! (Binary runs under your permissions)

10 Enforcing a Policy on a Malicious Binary Malicious binary that deletes files under the /c/important directory. SecondWrite Malicious Binary Security Policy + Security policy for downloaded applications: Cannot delete files which the application did not itself create

11 Enforcing a Policy on a Malicious Binary Malicious Binary Run binary Kill application! Security Policy

12 Prevent network send after reading sensitive files Impose quota on resource usage (e.g. heap memory) Examples of Other Policies

13 Customizable: Security checks customizable to application, source, user and site. Wide Scope: Completely enforce Confidentiality, Integrity, and Availability (CIA triad) in a binary Preventative: Ability to stop attacks before they succeed Portable: Approach is independent of operating system and programming language Advantages of this Approach

Download ppt "Bending Binary Programs to your Will Rajeev Barua."

Similar presentations

What is a Computer Program? For a computer to be able to do anything (multiply, play a song, run a word processor), it must be given the instructions.

What is a Computer Program? For a computer to be able to do anything (multiply, play a song, run a word processor), it must be given the instructions.
Operating Systems Components of OS

Operating Systems Components of OS
Java Applet Security Diana Dong CS 265 Spring 2004.

Java Applet Security Diana Dong CS 265 Spring 2004.
Systems Software.

Systems Software.
PROJECT IN DISTRIBUTED SYSTEMS IPERF FOR ANDROID Developers: Shir Degani, Yuval Degani Supervisors: Prof. Roy Friedman, Alex Kogan.

PROJECT IN DISTRIBUTED SYSTEMS IPERF FOR ANDROID Developers: Shir Degani, Yuval Degani Supervisors: Prof. Roy Friedman, Alex Kogan.
Lecture 2: Do you speak Java?. From Problem to Program Last Lecture we looked at modeling with objects! Steps to solving a business problem –Investigate.

Lecture 2: Do you speak Java?. From Problem to Program Last Lecture we looked at modeling with objects! Steps to solving a business problem –Investigate.
Modern Compiler Internal Representations Silvius Rus 1/23/2002.

Modern Compiler Internal Representations Silvius Rus 1/23/2002.
1 Pertemuan 05 Malicious Software Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.

1 Pertemuan 05 Malicious Software Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.
Java for High Performance Computing Jordi Garcia Almiñana 14 de Octubre de 1998 de la era post-internet.

Java for High Performance Computing Jordi Garcia Almiñana 14 de Octubre de 1998 de la era post-internet.
A Type System for Expressive Security Policies David Walker Cornell University.

A Type System for Expressive Security Policies David Walker Cornell University.
Chapter 10 Application Development. Chapter Goals Describe the application development process and the role of methodologies, models and tools Compare.

Chapter 10 Application Development. Chapter Goals Describe the application development process and the role of methodologies, models and tools Compare.
1 The Problem o Fluid software cannot be trusted to behave as advertised unknown origin (must be assumed to be malicious) known origin (can be erroneous.

1 The Problem o Fluid software cannot be trusted to behave as advertised unknown origin (must be assumed to be malicious) known origin (can be erroneous.
Database Management Systems (DBMS)

Database Management Systems (DBMS)
Source Code Basics. Code For a computer to execute instructions, it needs to be in binary Each instruction is given a number Known as “operation code”

Source Code Basics. Code For a computer to execute instructions, it needs to be in binary Each instruction is given a number Known as “operation code”
Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden

Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden
Introduction to Java CSIS 3701: Advanced Object Oriented Programming.

Introduction to Java CSIS 3701: Advanced Object Oriented Programming.
Java Security. Topics Intro to the Java Sandbox Language Level Security Run Time Security Evolution of Security Sandbox Models The Security Manager.

Java Security. Topics Intro to the Java Sandbox Language Level Security Run Time Security Evolution of Security Sandbox Models The Security Manager.
1 Chap 10 Malicious Software. 2 Viruses and ”Malicious Programs ” Computer “Viruses” and related programs have the ability to replicate themselves on.

1 Chap 10 Malicious Software. 2 Viruses and ”Malicious Programs ” Computer “Viruses” and related programs have the ability to replicate themselves on.
Central Online Grading System COGS Dec15-21 dec1521.sd.ece.iastate.edu.

Central Online Grading System COGS Dec15-21 dec1521.sd.ece.iastate.edu.
COMPUTER SOFTWARE Section 2 “System Software: Computer System Management ” CHAPTER 4 Lecture-6/ T. Nouf Almujally 1.

COMPUTER SOFTWARE Section 2 “System Software: Computer System Management ” CHAPTER 4 Lecture-6/ T. Nouf Almujally 1.

Similar presentations

Ads by Google