HeapSafe: Securing Unprotected Heaps in RISC-V
Asmit De, Swaroop Ghosh
TL;DR
HeapSafe is a hardware-assisted scheme for RISC-V that protects heap buffers from overflow and use-after-free vulnerabilities, offering improved performance and low overhead compared to software solutions.
Contribution
This work introduces HeapSafe, a novel hardware coprocessor-based heap protection scheme for RISC-V, enhancing security with minimal performance impact.
Findings
1.5X performance overhead with HeapSafe
1.59% area overhead
22% faster than software protection
Abstract
RISC-V is a promising open-source architecture primarily targeted for embedded systems. Programs compiled using the RISC-V toolchain can run bare-metal on the system, and, as such, can be vulnerable to several memory corruption vulnerabilities. In this work, we present HeapSafe, a lightweight hardware assisted heap-buffer protection scheme to mitigate heap overflow and use-after-free vulnerabilities in a RISC-V SoC. The proposed scheme tags pointers associated with heap buffers with metadata indices and enforces tag propagation for commonly used pointer operations. The HeapSafe hardware is decoupled from the core and is designed as a configurable coprocessor and is responsible for validating the heap buffer accesses. Benchmark results show a 1.5X performance overhead and 1.59% area overhead, while being 22% faster than a software protection. We further implemented a HeapSafe-nb, an…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsSecurity and Verification in Computing · Diamond and Carbon-based Materials Research · Advanced Malware Detection Techniques