%0 Journal Article
%A CHEN Ze
%A LI Hui
%A LIU Wen-ling
%A NIU Shao-zhang
%A ZHANG Wen
%T A Protection Framework for Android Native Code Based on CFI
%D 2018
%R 10.13190/j.jbupt.2018-017
%J Journal of Beijing University of Posts and Telecommunications
%P 1-6,13
%V 41
%N 6
%X A native code reinforcement framework based on control-flow integrity (CFI), DroidCFI is proposed, to prevent native code of Android applications from core code extraction and malicious injection. This framework can extract the control-flow features of subroutine invocation process by static analysis, provide developers with a visual policy configuration view to set the reinforced points, generate the reinforcement code based on the CFI policy, and integrate the verification module into the target application. Then a CFI check is enforced during the run-time of the application to defend against the malicious attack. Experiments show that DroidCFI can provide secure protection to native code of applications by minimal performance overhead.
%U https://journal.bupt.edu.cn/EN/10.13190/j.jbupt.2018-017