What problem does this paper attempt to address?

### Problems the Paper Aims to Solve The paper aims to address the security issues of heap memory management in software development, particularly focusing on the prevalent heap memory vulnerabilities in unsafe languages like C and C++. Although the heap plays a crucial role in dynamic memory allocation, its complexity leads to frequent heap corruption, posing a serious threat to system security. Existing solutions, while providing temporal and spatial memory safety, often come with excessive overhead, making them impractical for real-world applications. **Specific problems include:** 1. **Prevalence and severity of heap memory vulnerabilities**: - The complexity of heap memory management leads to common issues of heap corruption. These vulnerabilities can be exploited to manipulate data, bypass security defenses, and even execute arbitrary code, causing severe impacts on affected systems. 2. **High overhead of existing solutions**: - Although some previous works have successfully provided temporal and spatial memory safety, they typically come with more than 1.5 times the time overhead, making these solutions impractical for real-world applications. 3. **Compatibility issues**: - Most advanced Use-After-Free (UAF) defense mechanisms require the introduction of new allocators, which may conflict with existing heap memory protection mechanisms, limiting their applicability. ### Solution To address the above issues, the paper proposes SHADOW BOUND, an efficient heap memory protection design. The core of SHADOW BOUND is an efficient out-of-bounds defense mechanism that prevents the exploitation of out-of-bounds vulnerabilities by inserting boundary checks and can seamlessly integrate with various UAF defense mechanisms without compatibility concerns. **Key features include:** 1. **Shadow memory management mechanism**: - Uses shadow memory to store the boundary information of each heap block corresponding to a pointer, ensuring that boundary information can be extracted with just one load instruction and a few arithmetic instructions during checks. 2. **Custom compiler optimizations**: - Implements various custom optimizations for boundary checks, significantly reducing time overhead. These optimizations include runtime-driven check elimination, directional boundary checks, and safe mode recognition. 3. **Efficiency and low overhead**: - Experimental results show that SHADOW BOUND provides robust heap memory protection while introducing minimal time and memory overhead, making it suitable for various benchmarks and real-world applications. Through these innovations, SHADOW BOUND aims to provide an efficient and practical heap memory protection mechanism, effectively addressing existing heap memory security challenges.