A New Data Randomization Method to Defend Buffer Overflow Attacks

Code injection attack has become a typical representative of the attacks against memory, buffer overflow attacks which is the most commonly used. It relies on the change of control-flow, let the program point to the malicious code in order to obtain the root rights. This paper presents a method usin...

Celý popis

Uloženo v:
Podrobná bibliografie
Vydáno v:Physics procedia Ročník 24; s. 1757 - 1764
Hlavní autoři: Fen, Yan, Fuchao, Yuan, Xiaobing, Shen, Xinchun, Yin, Bing, Mao
Médium: Journal Article
Jazyk:angličtina
Vydáno: Elsevier B.V 2012
Témata:
array protection
buffer overflow
data randomization
PointGuard
data randomization
buffer overflow
array protection
PointGuard
ISSN:1875-3892, 1875-3892
On-line přístup:Získat plný text
Tagy: Přidat tag
Žádné tagy, Buďte první, kdo vytvoří štítek k tomuto záznamu!
Popis
Shrnutí:Code injection attack has become a typical representative of the attacks against memory, buffer overflow attacks which is the most commonly used. It relies on the change of control-flow, let the program point to the malicious code in order to obtain the root rights. This paper presents a method using randomization based on data protection, through the protection of pointers and arrays to defend buffer overflow attacks effectively.
ISSN:1875-3892
1875-3892
DOI:10.1016/j.phpro.2012.02.259