摘要
As an active defenses technique,multivariant execution(MVX)can detect attacks by monitoring the consistency of heterogeneous variants with parallel execution.Compared with patch-style passive defense,MVX can defend against known and even unknown vulnerability-based attacks without relying on attack feature information.However,variants generated with software diversity technologies will introduce new vulnerabilities when they execute in parallel.First,we analyze the security of MVX theory from the perspective of formal description.Then we summarize the general forms and techniques for attacks against MVX,and analyze the new vulnerabilities arising from the combination of variant generation technologies.We propose SecMVX,a secure MVX architecture and variant generation technology.Experimental evaluations based on CVEs and SPEC 2006 benchmark show that SecMVX introduces 11.29%of the average time overhead,and avoids vulnerabilities caused by the improper combination of variant generation technologies while keeping the defensive ability of MVX.
基金
National Key Research and Development Program of China(Grant No.2018YF0804003)
the National Key Research and Development Program of China under Grant No.2017YFB0803204.
作者简介
Bingzheng Li received the B.S.degrees from Information Engineering University in 2015.He is currently a Ph.D.student at State Key Laboratory of Mathematical Engineering and Advanced Computing.His research interest is software engineering for cyberspace security;orresponding author:Zheng Zhang received the Ph.D.degree in Computer Science and Technology from Information Engineering University in 2006.His current research is cyberspace security,email:ponyzhang@126.com;Xiaomei Wang received the Ph.D.degree in Computer Science and Technology from Information Engineering University in 2006.His current research is communications network and big data;Sheng Qu received the B.S.degrees from Datong University in 2015.He is currently a postgraduate at State Key Laboratory of Mathematical Engineering and Advanced Computing.His research interest is software engineering for cyberspace security;Jiangxing Wu Jiangxing Wu is an academician of the China Academy of Engineering.He is a Professor in the Institute of Information Technology,China National Digital Switching System Engineering and Technological R&D Center.His research interests linclude future network,distributed computer system,broadband network,and network securty.China。
