A New Data Randomization Method to Defend Buffer Overflow Attacks

Code injection attack has become a typical representative of the attacks against memory, buffer overflow attacks which is the most commonly used. It relies on the change of control-flow, let the program point to the malicious code in order to obtain the root rights. This paper presents a method usin...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Physics procedia Jg. 24; S. 1757 - 1764
Hauptverfasser: Fen, Yan, Fuchao, Yuan, Xiaobing, Shen, Xinchun, Yin, Bing, Mao
Format: Journal Article
Sprache:Englisch
Veröffentlicht: Elsevier B.V 2012
Schlagworte:
array protection
buffer overflow
data randomization
PointGuard
data randomization
buffer overflow
array protection
PointGuard
ISSN:1875-3892, 1875-3892
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Code injection attack has become a typical representative of the attacks against memory, buffer overflow attacks which is the most commonly used. It relies on the change of control-flow, let the program point to the malicious code in order to obtain the root rights. This paper presents a method using randomization based on data protection, through the protection of pointers and arrays to defend buffer overflow attacks effectively.
ISSN:1875-3892
1875-3892
DOI:10.1016/j.phpro.2012.02.259