start-ver=1.4
cd-journal=joma
no-vol=2016
cd-vols=
no-issue=
article-no=
start-page=219
end-page=234
dt-received=
dt-revised=
dt-accepted=
dt-pub-year=2016
dt-pub=20160921
dt-online=
en-article=
kn-article=
en-subject=
kn-subject=
en-title=
kn-title=HeapRevolver: Delaying and Randomizing Timing of Release of Freed Memory Area to Prevent Use-After-Free Attacks
en-subtitle=
kn-subtitle=
en-abstract=
kn-abstract=Recently, there has been an increase in use-after-free (UAF) vulnerabilities, which are exploited using a dangling pointer that refers to a freed memory. Various methods to prevent UAF attacks have been proposed. However, only a few methods can effectively prevent UAF attacks during runtime with low overhead. In this paper, we propose HeapRevolver, which is a novel UAF attack-prevention method that delays and randomizes the timing of release of freed memory area by using a memory-reuse-prohibited library, which prohibits a freed memory area from being reused for a certain period. In this paper, we describe the design and implementation of HeapRevolver in Linux and Windows, and report its evaluation results. The results show that HeapRevolver can prevent attacks that exploit existing UAF vulnerabilities. In addition, the overhead is small.
en-copyright=
kn-copyright=

en-aut-name=YamauchiToshihiro
en-aut-sei=Yamauchi
en-aut-mei=Toshihiro
kn-aut-name=
kn-aut-sei=
kn-aut-mei=
aut-affil-num=1
ORCID=

en-aut-name=IkegamiYuta
en-aut-sei=Ikegami
en-aut-mei=Yuta
kn-aut-name=
kn-aut-sei=
kn-aut-mei=
aut-affil-num=2
ORCID=

affil-num=1
en-affil=Graduate School of Natural Science and Technology, Okayama University
kn-affil=

affil-num=2
en-affil=Graduate School of Natural Science and Technology, Okayama University
kn-affil=
en-keyword=Use-after-free (UAF) vulnerabilities
kn-keyword=Use-after-free (UAF) vulnerabilities
en-keyword=UAF attack-prevention
kn-keyword=UAF attack-prevention
en-keyword=Memory-reuse-prohibited library
kn-keyword=Memory-reuse-prohibited library
en-keyword=System security
kn-keyword=System security
END