Research on Control Flow Integrity Scheme for Android Platform

Although there are protection mechanisms like ASLR, DEP, SELinux in the Android system, they are not very effective. Although the control flow integrity scheme already has multiple schemes, some of them are protected at the source code level, some are protected by binary files, and the protection of binary files requires a large scope to rewrite binary files. This paper breaks through the difficulty of binary file rewriting, and innovatively proposes a control flow integrity protection scheme for binary files already existed in the Android system, which can effectively protect heap overflow in the Android system with a small amount of modification to binary. Attacks such as memory uninitialization, re-use after release, double release, and other memory-destroyed vulnerabilities.