Title: How Memory-Safe is IoT? Assessing the Impact of Memory-Protection Solutions for Securing Wireless Gateways Show Chinese title

Title: 物联网有多安全? 评估内存保护解决方案对安全无线网关的影响

Abstract: The rapid development of the Internet of Things (IoT) has enabled novel user-centred applications, including many in safety-critical areas such as healthcare, smart environment security, and emergency response systems. The diversity in IoT manufacturers, standards, and devices creates a combinatorial explosion of such deployment scenarios, leading to increased security and safety threats due to the difficulty of managing such heterogeneity. In almost every IoT deployment, wireless gateways are crucial for interconnecting IoT devices and providing services, yet they are vulnerable to external threats and serve as key entry points for large-scale IoT attacks. Memory-based vulnerabilities are among the most serious threats in software, with no universal solution yet available. Legacy memory protection mechanisms, such as canaries, RELRO, NX, and Fortify, have enhanced memory safety but remain insufficient for comprehensive protection. Emerging technologies like ARM-MTE, CHERI, and Rust are based on more universal and robust Secure-by-Design (SbD) memory safety principles, yet each entails different trade-offs in hardware or code modifications. Given the challenges of balancing security levels with associated overheads in IoT systems, this paper explores the impact of memory safety on the IoT domain through an empirical large-scale analysis of memory-related vulnerabilities in modern wireless gateways. Our results show that memory vulnerabilities constitute the majority of IoT gateway threats, underscoring the necessity for SbD solutions, with the choice of memory-protection technology depending on specific use cases and associated overheads. Show Chinese abstract

Abstract: 物联网（IoT）的快速发展使以用户为中心的新应用成为可能，包括医疗保健、智能环境安全和应急响应系统等关键安全领域。物联网制造商、标准和设备的多样性导致了此类部署场景的组合爆炸，由于难以管理这种异构性，从而增加了安全和安全隐患。在几乎每个物联网部署中，无线网关对于连接物联网设备和提供服务至关重要，但它们容易受到外部威胁，并且是大规模物联网攻击的关键入口。基于内存的漏洞是软件中最严重的威胁之一，目前尚无通用解决方案。传统的内存保护机制，如canaries、RELRO、NX和Fortify，虽然增强了内存安全性，但对全面保护仍显不足。像ARM-MTE、CHERI和Rust这样的新兴技术基于更普遍和强大的设计安全（SbD）内存安全原则，但每种技术在硬件或代码修改方面都有不同的权衡。鉴于物联网系统中平衡安全级别与相关开销的挑战，本文通过对外部无线网关中内存相关漏洞的实证大规模分析，探讨了内存安全对物联网领域的影响。我们的结果表明，内存漏洞构成了物联网网关威胁的大部分，强调了SbD解决方案的必要性，而内存保护技术的选择则取决于具体的使用案例和相关开销。