This repository contains the source code for our proposed system OptiSan , which has been accepted in the 33rd USENIX Security Symposium ( USENIX Security'24).
There are five components each of which includes a README :
- Security Impact analyses - to compute unsafe operations and usable targets
- Cost Estimation - to estimate cost of each defense using the execution profile (gcov)
- Formulation (MINLP) (MATLAB + Gurobi) solver - to solve the MINLP protection budget problem to compute placement for a desired budget
- Static Instrumentation pipeline - to instrument programs as computed
- Baggy bounds - an open source LLVM based Baggy Bounds implementation