Control Flow Confinement: An Empirical Prospect

Authors: ,

Abstract: Dictating program control-flow transfers to be within a reference control-flow graph (CFG) can make a sound software protection. Control flow confinement (CFC) is to ensure the program execution to follow the reference of a control flow graph (CFG) obtained via profiled execution traces with various input data sets. CFC allows only the tested and expected control flows in program execution. This paper gauges the prospect of the CFC in practice by investigating how many unique control flow transfer instances there are in the execution profiles of various applications including popular sever programs and embedded routines. The profiled execution traces with various input data sets show that the number of unique control flow transfer instances are surprisingly low, which suggest that confining the program control flow within the set of the unique control flow transfers is feasible in practice. With the CFC, software behavior would be within the expected behavior space, avoiding unexpected mis-behavior, which leads to more dependable and secure environment for IoT (Internet of Things) and CPS (Cyber Physical System).

WSEAS Transactions on Information Science and Applications, ISSN / E-ISSN: 1790-0832 / 2224-3402, Volume 14, 2017, Art. #6

PDF
XML
Cite
×
Citation Tools
WSEAS AMA
Yongsuk Lee, Gyungho Lee, "Control Flow Confinement: An Empirical Prospect," WSEAS Transactions on Information Science and Applications, vol. 14, pp. 40-48, 2017, DOI:
Yongsuk Lee, Gyungho Lee. Control Flow Confinement: An Empirical Prospect. WSEAS Transactions on Information Science and Applications. 2017;14:40-48.
Copy to Clipboard
Citation copied to Clipboard

Certification

---