System software commonly uses indirect calls to realize dynamic program behaviors.
However, indirect-calls also bring challenges to constructing a precise control-flow graph …

We present the design, implementation, and evaluation of FineIBT: a CFI enforcement
mechanism that improves the precision of hardware-assisted CFI solutions, like Intel IBT, by …

Today's software programs are bloating and have become extremely complex. As there is
typically no internal isolation among modules in a program, a vulnerability can be exploited …

In recent years, program data attacks (PDA) have become a popular topic in the field of
network security. PDAs are memory corruption vulnerability exploitation techniques that …

Over the past decade, vulnerabilities in the Linux kernel have more than doubled, allowing
control-flow hijacking attacks that compromise the entire system. To thwart these attacks …

When dealing with millions of lines of C code, we still cannot have the cake and eat it: type
analysis for call graph construction is scalable yet highly imprecise. We address this …

After decades of research, constructing call graphs for modern C-based software remains
either imprecise or inefficient when scaling up to the ever-growing complexity. The main …

In contemporary software development, the widespread use of indirect calls to achieve
dynamic features poses challenges in constructing precise control flow graphs (CFGs) …

Control-Flow Integrity (CFI) is considered a promising solution in thwarting advanced code-
reuse attacks. While the problem of backward-edge protection in CFI is nearly closed …

Program debloating aims to enhance the performance and reduce the attack surface of
bloated applications. Several techniques have been recently proposed to specialize …