Comments on: RIO: Return Instruction Obfuscation for Bare-Metal IoT   Devices with Binary Analysis

Kai Lehniger; Peter Langend\"orfer

arXiv:2412.08257·cs.CR·December 12, 2024

Comments on: RIO: Return Instruction Obfuscation for Bare-Metal IoT Devices with Binary Analysis

Kai Lehniger, Peter Langend\"orfer

PDF

Open Access

TL;DR

This paper critiques the RIO obfuscation technique for IoT devices, revealing vulnerabilities that allow attackers to retrieve return instructions easily and proposing modifications to enhance security.

Contribution

It identifies flaws in RIO's design that compromise its effectiveness and suggests improvements to strengthen return instruction obfuscation.

Findings

01

Flaws enable easy retrieval of plaintext return instructions

02

Proposed changes improve RIO's resistance to binary analysis

03

Highlights need for more robust obfuscation methods

Abstract

This is a comment on "RIO: Return Instruction Obfuscation for Bare-Metal IoT Devices with Binary Analysis". RIO prevents finding gadgets for Return-Oriented Programming attacks by encrypting return instructions. This paper shows flaws in the design of RIO that allow for the easy retrieval of the plaintext return instructions without decrypting them. Additionally, changes are proposed to improve upon the original idea.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsPhysical Unclonable Functions (PUFs) and Hardware Security · Advancements in Semiconductor Devices and Circuit Design · Adversarial Robustness in Machine Learning