Internet Archive Scholar

CONFLLVM: A Compiler for Enforcing Data Confidentiality in Low-Level Code [article]

Ajay Brahmakshatriya, Piyus Kedia, Derrick Paul McKee, Pratik Bhatu, Deepak Garg, Akash Lal, Aseem Rastogi
2019 arXiv   pre-print

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (1.4 MB)
https://web.archive.org/web/20191027121342/https://arxiv.org/pdf/1711.11396v3.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2019; you can also visit the original URL. The file type is application/pdf.

Other Versions

2017 pre-print
arXiv:1711.11396v1 fatcat:abx26ab7mrah7oefle4fnpqoeu
2017 pre-print
arXiv:1711.11396v2 fatcat:rffmmsojfrgxpblznnosflahjy
We present an instrumenting compiler for enforcing data confidentiality in low-level applications (e.g. those written in C) in the presence of an active adversary. In our approach, the programmer marks secret data by writing lightweight annotations on top-level definitions in the source code. The compiler then uses a static flow analysis coupled with efficient runtime instrumentation, a custom memory layout, and custom control-flow integrity checks to prevent data leaks even in the presence of
more » ... ow-level attacks. We have implemented our scheme as part of the LLVM compiler. We evaluate it on the SPEC micro-benchmarks for performance, and on larger, real-world applications (including OpenLDAP, which is around 300KLoC) for programmer overhead required to restructure the application when protecting the sensitive data such as passwords. We find that performance overheads introduced by our instrumentation are moderate (average 12% on SPEC), and the programmer effort to port OpenLDAP is only about 160 LoC.
arXiv:1711.11396v3 fatcat:pv6jpzcytncjllnm7v76ae4viy
Multiple Versions
Citation

Ajay Brahmakshatriya, Piyus Kedia, Derrick Paul McKee, Pratik Bhatu, Deepak Garg, Akash Lal, Aseem Rastogi. "CONFLLVM: A Compiler for Enforcing Data Confidentiality in Low-Level Code." arXiv (2019)