protecting memory
play

Protecting Memory What is there to protect in memory? Page tables - PowerPoint PPT Presentation

Dec 13, 2023 •156 likes •401 views

Protecting Memory What is there to protect in memory? Page tables and virtual memory protection Special security issues for memory Buffer overflows Lecture 8 Page 1 CS 236 Online What Is In Memory? Executable code

  1. Protecting Memory • What is there to protect in memory? • Page tables and virtual memory protection • Special security issues for memory • Buffer overflows Lecture 8 Page 1 CS 236 Online

  2. What Is In Memory? • Executable code – Integrity required to ensure secure operations • Copies of permanently stored data – Secrecy and integrity issues • Temporary process data – Mostly integrity issues Lecture 8 Page 2 CS 236 Online

  3. Mechanisms for Memory Protection • Most general purpose systems provide some memory protection – Logical separation of processes that run concurrently • Usually through virtual memory methods • Originally arose mostly for error containment, not security Lecture 8 Page 3 CS 236 Online

  4. Paging and Security • Main memory is divided into page frames • Every process has an address space divided into logical pages • For a process to use a page, it must reside in a page frame • If multiple processes are running, how do we protect their frames? Lecture 8 Page 4 CS 236 Online

  5. Protection of Pages • Each process is given a page table – Translation of logical addresses into physical locations • All addressing goes through page table – At unavoidable hardware level • If the OS is careful about filling in the page tables, a process can’t even name other processes’ pages Lecture 8 Page 5 CS 236 Online

  6. Page Tables and Physical Pages Process Page Tables Physical Page Frames Any address Process A names goes through the green table Any address Process A Process B names goes through the blue table They can’t even name each other’s Process B pages Lecture 8 Page 6 CS 236 Online

  7. Security Issues of Page Frame Reuse • A common set of page frames is shared by all processes • The OS switches ownership of page frames as necessary • When a process acquires a new page frame, it used to belong to another process – Can the new process read the old data? Lecture 8 Page 7 CS 236 Online

  8. Reusing Pages Process Page Tables Physical Page Frames What happens now if Process A requests a page? Process A Can Process A now read Process B Process B’s deallocates deallocated a page data? Process B Lecture 8 Page 8 CS 236 Online

  9. Strategies for Cleaning Pages • Don’t bother – Basic Linux strategy • Zero on deallocation • Zero on reallocation • Zero on use • Clean pages in the background – Windows strategy Lecture 8 Page 9 CS 236 Online

  10. Special Interfaces to Memory • Some systems provide a special interface to memory • If the interface accesses physical memory, – And doesn’t go through page table protections, – Then attackers can read the physical memory – Letting them figure out what’s there and find what they’re looking for Lecture 8 Page 10 CS 236 Online

  11. Buffer Overflows • One of the most common causes for compromises of operating systems • Due to a flaw in how operating systems handle process inputs – Or a flaw in programming languages – Or a flaw in programmer training – Depending on how you look at it Lecture 8 Page 11 CS 236 Online

  12. What Is a Buffer Overflow? • A program requests input from a user • It allocates a temporary buffer to hold the input data • It then reads all the data the user provides into the buffer, but . . . • It doesn’t check how much data was provided Lecture 8 Page 12 CS 236 Online

  13. For Example, int main(){ char name[32]; printf(“Please type your name: “); gets(name); printf(“Hello, %s”, name); return (0); } • What if the user enters more than 32 characters? Lecture 8 Page 13 CS 236 Online

  14. Well, What If the User Does? • Code continues reading data into memory • The first 32 bytes go into name buffer – Allocated on the stack – Close to record of current function • The remaining bytes go onto the stack – Right after name buffer – Overwriting current function record – Including the instruction pointer Lecture 8 Page 14 CS 236 Online

  15. Why Is This a Security Problem? • The attacker can cause the function to “return” to an arbitrary address • But all attacker can do is run different code than was expected • He hasn’t gotten into anyone else’s processes – Or data • So he can only fiddle around with his own stuff, right? Lecture 8 Page 15 CS 236 Online

  16. Is That So Bad? • Well, yes • That’s why a media player can write configuration and data files • Unless roles and access permissions set up very carefully, a typical program can write all its user’s files Lecture 8 Page 16 CS 236 Online

  17. The Core Buffer Overflow Security Issue • Programs often run on behalf of others – But using your identity • Maybe OK for you to access some data • But is it OK for someone who you’re running a program for to access it? – Downloaded programs – Users of web servers – Many other cases Lecture 8 Page 17 CS 236 Online

  18. Using Buffer Overflows to Compromise Security • Carefully choose what gets written into the instruction pointer • So that the program jumps to something you want to do – Under the identity of the program that’s running • Such as, execute a command shell • Usually attacker provides this code Lecture 8 Page 18 CS 236 Online

  19. Effects of Buffer Overflows • A remote or unprivileged local user runs a program with greater privileges • If buffer overflow is in a root program, it gets all privileges, essentially • Can also overwrite other stuff – Such as heap variables • Common mechanism to allow attackers to break into machines Lecture 8 Page 19 CS 236 Online

  20. Stack Overflows • The most common kind of buffer overflow • Intended to alter the contents of the stack • Usually by overflowing a dynamic variable • Usually with intention of jumping to exploit code – Though it could instead alter parameters or variables in other frames – Or even variables in current frame Lecture 8 Page 20 CS 236 Online

  21. Heap Overflows • Heap is used to store dynamically allocated memory • Buffers kept there can also overflow • Generally doesn’t offer direct ability to jump to arbitrary code • But potentially quite dangerous Lecture 8 Page 21 CS 236 Online

  22. What Can You Do With Heap Overflows? • Alter variable values • “Edit” linked lists or other data structures • If heap contains list of function pointers, can execute arbitrary code • Generally, heap overflows are harder to exploit than stack overflows • But they exist – E.g., one discovered in Google Chrome in February 2012 Lecture 8 Page 22 CS 236 Online

  23. Some Recent Buffer Overflows • A reference implementation of UEFI – A standard for extensible firmware • Internet Explorer – A heap overflow • Kolibri web server • D-Link DSP-W215 smart plug • Adobe Flash Player • Not as common as they used to be, but still a real danger Lecture 8 Page 23 CS 236 Online

  24. Fixing Buffer Overflows • Write better code (check input lengths, etc.) • Use programming languages that prevent them • Add OS controls that prevent overwriting the stack • Put things in different places on the stack, making it hard to find the return pointer (e.g., Microsoft ASLR) • Don’t allow execution from places in memory where buffer overflows occur (e.g., Windows DEP) – Or don’t allow execution of writable pages • Why aren’t these things commonly done? – Sometimes they are, but not always effective • When not, presumably because programmers and designers neither know nor care about security Lecture 8 Page 24 CS 236 Online

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Citadel: Efficiently Protecting Stacked Memory From Large Granularity Failures Dec 15 th 2014

Citadel: Efficiently Protecting Stacked Memory From Large Granularity Failures Dec 15 th 2014

Citadel: Efficiently Protecting Stacked Memory From Large Granularity Failures Dec 15 th 2014 MICRO-47 Cambridge UK Prashant Nair - Georgia Tech David Roberts - AMD Research Moinuddin Qureshi - Georgia Tech INTRODUCTION TO 3D DRAM DRAM

533 views • 40 slides
Protecting Mobile Devices from Physical Memory Attacks with Targeted Encryption Le Guan , Chen

Protecting Mobile Devices from Physical Memory Attacks with Targeted Encryption Le Guan , Chen

Protecting Mobile Devices from Physical Memory Attacks with Targeted Encryption Le Guan , Chen Cao, Sencun Zhu, Jingqiang Lin, Peng Liu, Yubin Xia, and Bo Luo Why do Physical-space Threats Concern for SmartPhones? Why do Physical-space Threats

318 views • 31 slides
Memory II. Memory improvement III. Problems with memory 3 systems/stages of Memory: memory

Memory II. Memory improvement III. Problems with memory 3 systems/stages of Memory: memory

Main Focus I. Memory as a process Memory II. Memory improvement III. Problems with memory 3 systems/stages of Memory: memory the process by which I. Sensory Memory information is - acquired, II. Short -Term Memory - stored,

169 views • 5 slides
1 Memory SoC Persistent Memory-Driven Memory Memory Processor-Centric Memory SoC SoC

1 Memory SoC Persistent Memory-Driven Memory Memory Processor-Centric Memory SoC SoC

1 Memory SoC Persistent Memory-Driven Memory Memory Processor-Centric Memory SoC SoC Computing Computing + Fabric SoC Memory HYPERCONVERGED Exascale EDGE DEVICE SYSTEM Eliminate data movement via shared

400 views • 11 slides
Pr Protecting Ourselves, Pr Protecting Ot Other hers Pa Part 1: Wha What to Wear at Work k

Pr Protecting Ourselves, Pr Protecting Ot Other hers Pa Part 1: Wha What to Wear at Work k

6/2/20 HealthMatters in our Homes Pr Protecting Ourselves, Pr Protecting Ot Other hers Pa Part 1: Wha What to Wear at Work k and nd Wh Why 1 During this presentation, we will: Summarize what COVID-19 is, how it spreads, and who

463 views • 19 slides
x86 Memory Protection and Translation Don Porter CSE 506 Lecture Goal Understand the

x86 Memory Protection and Translation Don Porter CSE 506 Lecture Goal Understand the

x86 Memory Protection and Translation Don Porter CSE 506 Lecture Goal Understand the hardware tools available on a modern x86 processor for manipulating and protecting memory Lab 2: You will program this hardware Apologies:

1.1k views • 44 slides
Protecting Interprocess Communications Operating systems provide various kinds of

Protecting Interprocess Communications Operating systems provide various kinds of

Protecting Interprocess Communications Operating systems provide various kinds of interprocess communications Messages Semaphores Shared memory Sockets How can we be sure theyre used properly? Lecture 8 Page 1 CS 236

266 views • 25 slides
Minemu: Protecting buggy binaries from memory corruption attacks Erik Bosman

Minemu: Protecting buggy binaries from memory corruption attacks Erik Bosman

Minemu: Protecting buggy binaries from memory corruption attacks Erik Bosman <erik@minemu.org> Programming Languages type-safe vs. not type-safe Programming Languages type-safe vs. not type-safe Java Python Ruby Javascript

1.22k views • 111 slides
Protecting Our Protecting Our Introduction Family Family Globally HIV/AIDS has left its

Protecting Our Protecting Our Introduction Family Family Globally HIV/AIDS has left its

Protecting Our Protecting Our Introduction Family Family Globally HIV/AIDS has left its mark on every continent, with its highest prevalence being in sub Saharan Africa 10% of the worlds population An Assessment of In 2008,

353 views • 6 slides
Peer Review: Protecting Your Investment Peer Review: Protecting Your Investment So

Peer Review: Protecting Your Investment Peer Review: Protecting Your Investment So

Peer Review: Protecting Your Investment Peer Review: Protecting Your Investment So Hospitals will be paid less unless: Good scores on Incentive payments Meeting 17 clinical processes Funded by 1% cut in base (aspirin,

418 views • 8 slides
Peer Review: Protecting Your Investment Peer Review: Protecting Your Investment So

Peer Review: Protecting Your Investment Peer Review: Protecting Your Investment So

Peer Review: Protecting Your Investment Peer Review: Protecting Your Investment So Hospitals will be paid less unless: Good scores on Incentive payments Meeting 17 clinical processes Funded by 1% cut in base (aspirin,

614 views • 7 slides
UMBC M A L F T U M B C I O M Y O T R 1 (April 10, 2000 12:36 pm) I E S R C

UMBC M A L F T U M B C I O M Y O T R 1 (April 10, 2000 12:36 pm) I E S R C

Systems Programming 8086/88 Memory Interface II CMPE 310 Memory Address Decoding The processor can usually address a memory space that is much larger than the memory space covered by an individual memory chip. In order to splice a memory device

713 views • 21 slides
1 Brenda Milner 1918 There are Two Major Forms of Long Term Memory Explicit (Declarative)

1 Brenda Milner 1918 There are Two Major Forms of Long Term Memory Explicit (Declarative)

The Study of Memory Has Two Parts: Cellular Mechanisms of Learning (1) The Systems Problem of Memory: Where in the brain is memory stored? and the Biological Basis of Individuality (2) The Molecular Problem of Memory: How is memory stored at

536 views • 8 slides
Protecting Steel By Mr. Christopher L. Gibbons Protecting Steel Who are Teamac? 3 rd generation.

Protecting Steel By Mr. Christopher L. Gibbons Protecting Steel Who are Teamac? 3 rd generation.

Protecting Steel By Mr. Christopher L. Gibbons Protecting Steel Who are Teamac? 3 rd generation. Privately owned company. Based in Hull. Weve been making paint since 1908. Who am I? Chris Gibbons. L2 Icorr Paint inspector. 40 years

603 views • 14 slides
Protecting Your Respiratory Health Protecting Your Respiratory Health Tips to Help You Breathe

Protecting Your Respiratory Health Protecting Your Respiratory Health Tips to Help You Breathe

Breathe In, Breathe Out: Protecting Your Respiratory Health Protecting Your Respiratory Health Tips to Help You Breathe Easier The American Lung Association suggests taking these steps to help keep your lungs healthy and reduce the risk of

90 views • 6 slides
Memory & Game Content 1 Memory is precious Memory is precious, especially on simpler

Memory & Game Content 1 Memory is precious Memory is precious, especially on simpler

Memory & Game Content 1 Memory is precious Memory is precious, especially on simpler devices. Even on PCs need to be cautious, using too much memory tends to drive you off a performance cliff Memory fragmentation (or address space

700 views • 13 slides
Project 5: Virtual Memory Project Info Design Reviews: Tuesday, 8am-12pm, 11/25 You must

Project 5: Virtual Memory Project Info Design Reviews: Tuesday, 8am-12pm, 11/25 You must

Project 5: Virtual Memory Project Info Design Reviews: Tuesday, 8am-12pm, 11/25 You must do these before you leave for break OH: Thursday, 11/20, 4:30-6:30pm and 7:30- 9:30pm. Will probably host second round of OH on Sunday after

266 views • 13 slides
MMap (Memory Mapping) Simple, minimalist approach to scale up computation Mahdi Roozbahani

MMap (Memory Mapping) Simple, minimalist approach to scale up computation Mahdi Roozbahani

Class Website CX4242: MMap (Memory Mapping) Simple, minimalist approach to scale up computation Mahdi Roozbahani Lecturer, Computational Science and Engineering, Georgia Tech When should you use Spark/Hadoop, AWS, Azure? And when should you

531 views • 16 slides
CS 423 Operating System Design: Virtual Memory Management Professor Adam Bates CS 423:

CS 423 Operating System Design: Virtual Memory Management Professor Adam Bates CS 423:

CS 423 Operating System Design: Virtual Memory Management Professor Adam Bates CS 423: Operating Systems Design Goals for Today Learning Objective: Understand properties of virtual memory systems Announcements, etc: MP2 out

521 views • 32 slides
Memory Management 5A. Memory Management and Address Spaces 5B. Allocation Algorithms Operating

Memory Management 5A. Memory Management and Address Spaces 5B. Allocation Algorithms Operating

4/10/2016 Memory Management 5A. Memory Management and Address Spaces 5B. Allocation Algorithms Operating Systems Principles 5C. Advanced Allocation Techniques Memory Management 5D. Segment Relocation 5E. Garbage Collection Mark Kampe

711 views • 9 slides
Building Hardware Components for Memory Protection of Applications on a Tiny Processor Oct 14

Building Hardware Components for Memory Protection of Applications on a Tiny Processor Oct 14

Building Hardware Components for Memory Protection of Applications on a Tiny Processor Oct 14 2017 Hyunyoung Oh*, Yongje Lee, Junmo Park, Myonghoon Y ang and Yunheung Paek Seoul National University, Korea *Speaker 1 Security Optimization

630 views • 13 slides
CS333 Intro to Operating Systems Jonathan Walpole Virtual Memory (2) Inverted Page Tables

CS333 Intro to Operating Systems Jonathan Walpole Virtual Memory (2) Inverted Page Tables

CS333 Intro to Operating Systems Jonathan Walpole Virtual Memory (2) Inverted Page Tables Problem: - Page table overhead increases with address space size - Page tables get too big to fit in memory! Consider a computer with 64 bit addresses

669 views • 32 slides
COMPUTER INSTRUCTIONS MANINDER KAUR professormaninder@gmail.com Maninder Kaur www.eazynotes.com

COMPUTER INSTRUCTIONS MANINDER KAUR professormaninder@gmail.com Maninder Kaur www.eazynotes.com

COMPUTER INSTRUCTIONS MANINDER KAUR professormaninder@gmail.com Maninder Kaur www.eazynotes.com 1 professormaninder@gmail.com INSTRUCTION FORMAT An instruction format or instruction code is a group of bits used to perform a particular

420 views • 12 slides
IC220: Set #13: Building a real processor! ( Chapter 5) 1 The Processor: Datapath & Control

IC220: Set #13: Building a real processor! ( Chapter 5) 1 The Processor: Datapath & Control

IC220: Set #13: Building a real processor! ( Chapter 5) 1 The Processor: Datapath & Control READING: 5.1 5.4 We're ready to look at an implementation of the MIPS Simplified to contain only: memory-reference

244 views • 8 slides

More recommend