A4 Article in conference proceedings
Diversification of System Calls in Linux Binaries




List of Authors: Sampsa Rauti, Samuel Laurén, Shohreh Hosseinzadeh, Jari-Matti Mäkelä, Sami Hyrynsalmi, Ville Leppänen
Publication year: 2015
Book title *: Trusted systems. Proceedings of the 6th International Conference on Trustworthy Systems (InTrust 2014)
Title of series: Security and cryptology
Volume number: 9473
Number of pages: 21
ISBN: 978-3-319-27997-8
ISSN: 0302-9743

Abstract


In this paper, we analyze the presence of system calls in the ELF binaries. We study the locations of system calls in the software layers of Linux and also examine how many binaries in the whole system use system calls. 

Additionally, we discuss the different ways system calls are coded in ELF binaries and the challenges this causes for the diversification process. Also, we present a diversification tool and also suggest several solutions to overcome the difficulties faced in system call diversification. The amount of problematic system calls is small, and our diversification tool manages to diversify the clear majority of system calls present in standard-like Linux configurations. For diversifying all the remaining system calls, we consider several possible approaches. 



Last updated on 2019-20-07 at 08:43