{"id":"https://openalex.org/W2804799378","doi":"https://doi.org/10.1109/access.2018.2835838","title":"BoundShield: Comprehensive Mitigation for Memory Disclosure Attacks via Secret Region Isolation","display_name":"BoundShield: Comprehensive Mitigation for Memory Disclosure Attacks via Secret Region Isolation","publication_year":2018,"publication_date":"2018-01-01","ids":{"openalex":"https://openalex.org/W2804799378","doi":"https://doi.org/10.1109/access.2018.2835838","mag":"2804799378"},"language":"en","primary_location":{"id":"doi:10.1109/access.2018.2835838","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2018.2835838","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1109/access.2018.2835838","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5022262922","display_name":"Hai Jin","orcid":"https://orcid.org/0000-0002-3934-7605"},"institutions":[{"id":"https://openalex.org/I47720641","display_name":"Huazhong University of Science and Technology","ror":"https://ror.org/00p991c53","country_code":"CN","type":"education","lineage":["https://openalex.org/I47720641"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Hai Jin","raw_affiliation_strings":["Services Computing Technology and System Lab, Big Data Technology and System Lab, Cluster and Grid Computing Lab, School of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan, China"],"raw_orcid":"https://orcid.org/0000-0002-3934-7605","affiliations":[{"raw_affiliation_string":"Services Computing Technology and System Lab, Big Data Technology and System Lab, Cluster and Grid Computing Lab, School of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan, China","institution_ids":["https://openalex.org/I47720641"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5020850136","display_name":"Benxi Liu","orcid":"https://orcid.org/0000-0003-0466-566X"},"institutions":[{"id":"https://openalex.org/I47720641","display_name":"Huazhong University of Science and Technology","ror":"https://ror.org/00p991c53","country_code":"CN","type":"education","lineage":["https://openalex.org/I47720641"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Benxi Liu","raw_affiliation_strings":["Services Computing Technology and System Lab, Big Data Technology and System Lab, Cluster and Grid Computing Lab, School of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Services Computing Technology and System Lab, Big Data Technology and System Lab, Cluster and Grid Computing Lab, School of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan, China","institution_ids":["https://openalex.org/I47720641"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5071839026","display_name":"Yajuan Du","orcid":"https://orcid.org/0000-0002-8937-8055"},"institutions":[{"id":"https://openalex.org/I196699116","display_name":"Wuhan University of Technology","ror":"https://ror.org/03fe7t173","country_code":"CN","type":"education","lineage":["https://openalex.org/I196699116"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yajuan Du","raw_affiliation_strings":["School of Computer Science, Wuhan University of Technology, Wuhan, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science, Wuhan University of Technology, Wuhan, China","institution_ids":["https://openalex.org/I196699116"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5074676946","display_name":"Deqing Zou","orcid":"https://orcid.org/0000-0001-8534-5048"},"institutions":[{"id":"https://openalex.org/I47720641","display_name":"Huazhong University of Science and Technology","ror":"https://ror.org/00p991c53","country_code":"CN","type":"education","lineage":["https://openalex.org/I47720641"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Deqing Zou","raw_affiliation_strings":["Services Computing Technology and System Lab, Big Data Technology and System Lab, Cluster and Grid Computing Lab, School of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan, China"],"raw_orcid":"https://orcid.org/0000-0001-8534-5048","affiliations":[{"raw_affiliation_string":"Services Computing Technology and System Lab, Big Data Technology and System Lab, Cluster and Grid Computing Lab, School of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan, China","institution_ids":["https://openalex.org/I47720641"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":0.6758,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.77110943,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":"6","issue":null,"first_page":"36341","last_page":"36353"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10478","display_name":"Diamond and Carbon-based Materials Research","score":0.98089998960495,"subfield":{"id":"https://openalex.org/subfields/2505","display_name":"Materials Chemistry"},"field":{"id":"https://openalex.org/fields/25","display_name":"Materials Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9692000150680542,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.885127604007721},{"id":"https://openalex.org/keywords/memory-protection","display_name":"Memory protection","score":0.8228601217269897},{"id":"https://openalex.org/keywords/attack-surface","display_name":"Attack surface","score":0.6303147673606873},{"id":"https://openalex.org/keywords/address-space","display_name":"Address space","score":0.606878936290741},{"id":"https://openalex.org/keywords/extended-memory","display_name":"Extended memory","score":0.5385002493858337},{"id":"https://openalex.org/keywords/toolchain","display_name":"Toolchain","score":0.494398832321167},{"id":"https://openalex.org/keywords/code-reuse","display_name":"Code reuse","score":0.4938700795173645},{"id":"https://openalex.org/keywords/memory-address","display_name":"Memory address","score":0.4649461805820465},{"id":"https://openalex.org/keywords/compiler","display_name":"Compiler","score":0.45520782470703125},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.45285043120384216},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.4478309750556946},{"id":"https://openalex.org/keywords/buffer-overflow","display_name":"Buffer overflow","score":0.43318304419517517},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.429317444562912},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4249945282936096},{"id":"https://openalex.org/keywords/overhead","display_name":"Overhead (engineering)","score":0.41437458992004395},{"id":"https://openalex.org/keywords/memory-management","display_name":"Memory management","score":0.3811345398426056},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.20004212856292725},{"id":"https://openalex.org/keywords/overlay","display_name":"Overlay","score":0.19633156061172485},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.1913127899169922},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.19037511944770813},{"id":"https://openalex.org/keywords/semiconductor-memory","display_name":"Semiconductor memory","score":0.10885071754455566}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.885127604007721},{"id":"https://openalex.org/C18131444","wikidata":"https://www.wikidata.org/wiki/Q163585","display_name":"Memory protection","level":5,"score":0.8228601217269897},{"id":"https://openalex.org/C2776576444","wikidata":"https://www.wikidata.org/wiki/Q303569","display_name":"Attack surface","level":2,"score":0.6303147673606873},{"id":"https://openalex.org/C144240696","wikidata":"https://www.wikidata.org/wiki/Q367204","display_name":"Address space","level":2,"score":0.606878936290741},{"id":"https://openalex.org/C171675096","wikidata":"https://www.wikidata.org/wiki/Q1143380","display_name":"Extended memory","level":4,"score":0.5385002493858337},{"id":"https://openalex.org/C2777062904","wikidata":"https://www.wikidata.org/wiki/Q545406","display_name":"Toolchain","level":3,"score":0.494398832321167},{"id":"https://openalex.org/C2778583558","wikidata":"https://www.wikidata.org/wiki/Q771245","display_name":"Code reuse","level":3,"score":0.4938700795173645},{"id":"https://openalex.org/C153247305","wikidata":"https://www.wikidata.org/wiki/Q835713","display_name":"Memory address","level":3,"score":0.4649461805820465},{"id":"https://openalex.org/C169590947","wikidata":"https://www.wikidata.org/wiki/Q47506","display_name":"Compiler","level":2,"score":0.45520782470703125},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.45285043120384216},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.4478309750556946},{"id":"https://openalex.org/C40842320","wikidata":"https://www.wikidata.org/wiki/Q19423","display_name":"Buffer overflow","level":2,"score":0.43318304419517517},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.429317444562912},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4249945282936096},{"id":"https://openalex.org/C2779960059","wikidata":"https://www.wikidata.org/wiki/Q7113681","display_name":"Overhead (engineering)","level":2,"score":0.41437458992004395},{"id":"https://openalex.org/C176649486","wikidata":"https://www.wikidata.org/wiki/Q2308807","display_name":"Memory management","level":3,"score":0.3811345398426056},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.20004212856292725},{"id":"https://openalex.org/C136085584","wikidata":"https://www.wikidata.org/wiki/Q910289","display_name":"Overlay","level":2,"score":0.19633156061172485},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.1913127899169922},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.19037511944770813},{"id":"https://openalex.org/C98986596","wikidata":"https://www.wikidata.org/wiki/Q1143031","display_name":"Semiconductor memory","level":2,"score":0.10885071754455566}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/access.2018.2835838","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2018.2835838","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:bed3c9ddf26f4e8b80130908921f7961","is_oa":true,"landing_page_url":"https://doaj.org/article/bed3c9ddf26f4e8b80130908921f7961","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 6, Pp 36341-36353 (2018)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1109/access.2018.2835838","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2018.2835838","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.8199999928474426}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":35,"referenced_works":["https://openalex.org/W1591211019","https://openalex.org/W1605557845","https://openalex.org/W1823377586","https://openalex.org/W1963947298","https://openalex.org/W1992741024","https://openalex.org/W1993682390","https://openalex.org/W2003619630","https://openalex.org/W2012559808","https://openalex.org/W2022413220","https://openalex.org/W2033593513","https://openalex.org/W2042856445","https://openalex.org/W2079029390","https://openalex.org/W2124360577","https://openalex.org/W2138517425","https://openalex.org/W2155810272","https://openalex.org/W2162800072","https://openalex.org/W2252966646","https://openalex.org/W2293825325","https://openalex.org/W2301356482","https://openalex.org/W2460232746","https://openalex.org/W2487602542","https://openalex.org/W2512784977","https://openalex.org/W2516933175","https://openalex.org/W2523221082","https://openalex.org/W2553003374","https://openalex.org/W2559798902","https://openalex.org/W2586250227","https://openalex.org/W2600930651","https://openalex.org/W2607362719","https://openalex.org/W2725598243","https://openalex.org/W6638559843","https://openalex.org/W6680659772","https://openalex.org/W6722450644","https://openalex.org/W6740408367","https://openalex.org/W6791983347"],"related_works":["https://openalex.org/W3001658974","https://openalex.org/W2484072889","https://openalex.org/W4385373783","https://openalex.org/W4381611581","https://openalex.org/W4243333834","https://openalex.org/W2804799378","https://openalex.org/W2501039532","https://openalex.org/W2138847","https://openalex.org/W2121519027","https://openalex.org/W261562921"],"abstract_inverted_index":{"Address":[0],"space":[1],"layout":[2],"randomization":[3],"(ASLR)":[4],"is":[5],"now":[6],"widely":[7],"adopted":[8],"in":[9,135],"modern":[10],"operating":[11],"systems":[12],"to":[13,42,55,163,194],"thwart":[14],"code":[15,93,102,130,133],"reuse":[16],"attacks.":[17,35,117],"However,":[18],"an":[19,44],"adversary":[20],"can":[21,124,209],"still":[22],"bypass":[23],"fine-grained":[24],"ASLR":[25],"by":[26,94,104,127],"exploiting":[27],"memory":[28,33,49,64,83,103,109,115,122,179,214],"corruption":[29],"vulnerabilities":[30],"and":[31,132,156,197],"performing":[32],"disclosure":[34,84,110,116,215],"Although":[36],"Execute-no-Read":[37],"schemes":[38],"have":[39,182],"been":[40,67],"proven":[41],"be":[43,125],"efficient":[45],"solution":[46],"against":[47,82,87,213],"read-based":[48,108,121],"disclosures,":[50],"existing":[51],"solutions":[52],"need":[53],"modifications":[54,193],"kernel":[56],"or":[57],"hypervisor.":[58],"Besides,":[59],"the":[60,141,146,164,174,198,207],"defense":[61],"of":[62,186,192],"execution-based":[63,114,178],"disclosures":[65,123],"has":[66],"ignored.":[68],"In":[69],"this":[70],"paper,":[71],"we":[72],"propose":[73],"BoundShield,":[74],"a":[75,136,184,190,219],"self-protection":[76],"scheme":[77],"that":[78,158,206],"provides":[79],"comprehensive":[80],"protection":[81],"attacks,":[85],"especially":[86],"those":[88],"based":[89,188],"on":[90,189],"executing":[91],"arbitrary":[92],"leveraging":[95],"Intel":[96],"Memory":[97],"Protection":[98],"Extension.":[99],"BoundShield":[100,149,187,208],"protects":[101],"defending":[105],"not":[106],"only":[107],"attacks":[111,216],"but":[112],"also":[113],"On":[118,145],"one":[119],"hand,":[120,148],"eliminated":[126],"hiding":[128],"all":[129,159],"sections":[131],"pointers":[134,161],"secret":[137],"region":[138],"separated":[139],"from":[140,153],"user":[142],"address":[143],"space.":[144],"other":[147],"prevents":[150],"return":[151],"addresses":[152],"being":[154],"corrupted":[155],"ensures":[157],"function":[160],"point":[162],"legitimate":[165],"entries":[166],"whenever":[167],"they":[168],"are":[169],"dereferenced,":[170],"which":[171],"significantly":[172],"reduces":[173],"attack":[175],"surface":[176],"for":[177],"disclosures.":[180],"We":[181],"implemented":[183],"prototype":[185],"set":[191],"compiler":[195],"toolchain":[196],"standard":[199],"C":[200],"library.":[201],"Our":[202],"evaluation":[203],"results":[204],"show":[205],"provide":[210],"strong":[211],"defenses":[212],"while":[217],"incurring":[218],"small":[220],"performance":[221],"overhead.":[222]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":1},{"year":2020,"cited_by_count":1},{"year":2019,"cited_by_count":3}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}