Position paper: GPT conjecture: understanding the trade-offs between granularity, performance and timeliness in control-flow integrity

Zhilong Wang; Peng Liu

doi:10.1186/s42400-021-00098-2

Cybersecurity (Sep 2021)

Position paper: GPT conjecture: understanding the trade-offs between granularity, performance and timeliness in control-flow integrity

Zhilong Wang,
Peng Liu

Affiliations

Zhilong Wang: The Pennsylvania State University
Peng Liu: The Pennsylvania State University

DOI: https://doi.org/10.1186/s42400-021-00098-2
Journal volume & issue: Vol. 4, no. 1
pp. 1 – 9

Abstract

Read online

Abstract Performance/security trade-off is widely noticed in CFI research, however, we observe that not every CFI scheme is subject to the trade-off. Motivated by the key observation, we ask three questions: ➊ does trade-off really exist in different CFI schemes? ➋ if trade-off do exist, how do previous works comply with it? ➌ how can it inspire future research? Although the three questions probably cannot be directly answered, they are inspiring. We find that a deeper understanding of the nature of the trade-off will help answer the three questions. Accordingly, we proposed the GPT conjecture to pinpoint the trade-off in designing CFI schemes, which says that at most two out of three properties (fine granularity, acceptable performance, and preventive protection) could be achieved.

Published in Cybersecurity

ISSN: 2523-3246 (Online)
Publisher: SpringerOpen
Country of publisher: Singapore
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Electronics: Computer engineering. Computer hardware; Science: Mathematics: Instruments and machines: Electronic computers. Computer science
Website: https://cybersecurity.springeropen.com/

About the journal

Abstract

Keywords