Selfie: User-defined Sensitive Memory Protection and Recovery
This work addresses the need for customizable memory protection in runtime for users who risk losing sensitive data due to rigid corruption handling.
The paper tackles the problem of inflexible program abortion upon memory corruption by introducing Selfie, a hybrid solution that allows user-defined sensitive memory protection and recovery, enabling execution recovery decisions and using a symbolic solver to assess future impacts on sensitive memory.
Different users always have different requirement for sensitive memory definition. It is not flexible for aborting program execution once detecting memory corruption. Because the users may loose some sensitive data. We presented Selfie, a hybrid solution to provide one flexible solution to protect the sensitive memory according to users' requirements in runtime. Finally, Selfie can provide one solution to decide whether execution needs to be recovered. If the memory corruption doesn't belong sensitive memory, Selfie provides symbolic solver that can help figure out whether the memory corruption can affect the sensitive memory in future.