ICruiser: An improved approach for concurrent heap buffer overflow monitoring

Donghai Tian; Xuanya Li; Mo Chen; Changzhen Hu

doi:10.1587/transinf.E97.D.601

ICruiser: An improved approach for concurrent heap buffer overflow monitoring

Donghai Tian, Xuanya Li, Mo Chen, Changzhen Hu

Research output: Contribution to journal › Article › peer-review

5 Citations (Scopus)

Abstract

Heap buffer overflow has been extensively studied for many years, but it remains a severe threat to software security. Previous solutions suffer from limitations in that: 1) Some methods need to modify the target programs; 2) Most methods could impose considerable performance overhead. In this paper, we present iCruiser, an efficient heap buffer overflow monitoring system that uses the multi-core technology. Our system is compatible with existing programs, and it can detect the heap buffer overflows concurrently. Compared with the latest heap protection systems, our approach can achieves stronger security guarantees. Experiments show that iCruiser can detect heap buffer overflow attacks effectively with a little performance overhead.

Original language	English
Pages (from-to)	601-605
Number of pages	5
Journal	IEICE Transactions on Information and Systems
Volume	E97-D
Issue number	3
DOIs	https://doi.org/10.1587/transinf.E97.D.601
Publication status	Published - 2014

Keywords

Heap buffer overflow
Multi-core technology

Access to Document

10.1587/transinf.E97.D.601

Cite this

@article{bdd14842562047ab8bbef94bd77f53e7,

title = "ICruiser: An improved approach for concurrent heap buffer overflow monitoring",

abstract = "Heap buffer overflow has been extensively studied for many years, but it remains a severe threat to software security. Previous solutions suffer from limitations in that: 1) Some methods need to modify the target programs; 2) Most methods could impose considerable performance overhead. In this paper, we present iCruiser, an efficient heap buffer overflow monitoring system that uses the multi-core technology. Our system is compatible with existing programs, and it can detect the heap buffer overflows concurrently. Compared with the latest heap protection systems, our approach can achieves stronger security guarantees. Experiments show that iCruiser can detect heap buffer overflow attacks effectively with a little performance overhead.",

keywords = "Heap buffer overflow, Multi-core technology",

author = "Donghai Tian and Xuanya Li and Mo Chen and Changzhen Hu",

year = "2014",

doi = "10.1587/transinf.E97.D.601",

language = "English",

volume = "E97-D",

pages = "601--605",

journal = "IEICE Transactions on Information and Systems",

issn = "0916-8532",

publisher = "Maruzen Co., Ltd/Maruzen Kabushikikaisha",

number = "3",

}

TY - JOUR

T1 - ICruiser

T2 - An improved approach for concurrent heap buffer overflow monitoring

AU - Tian, Donghai

AU - Li, Xuanya

AU - Chen, Mo

AU - Hu, Changzhen

PY - 2014

Y1 - 2014

N2 - Heap buffer overflow has been extensively studied for many years, but it remains a severe threat to software security. Previous solutions suffer from limitations in that: 1) Some methods need to modify the target programs; 2) Most methods could impose considerable performance overhead. In this paper, we present iCruiser, an efficient heap buffer overflow monitoring system that uses the multi-core technology. Our system is compatible with existing programs, and it can detect the heap buffer overflows concurrently. Compared with the latest heap protection systems, our approach can achieves stronger security guarantees. Experiments show that iCruiser can detect heap buffer overflow attacks effectively with a little performance overhead.

AB - Heap buffer overflow has been extensively studied for many years, but it remains a severe threat to software security. Previous solutions suffer from limitations in that: 1) Some methods need to modify the target programs; 2) Most methods could impose considerable performance overhead. In this paper, we present iCruiser, an efficient heap buffer overflow monitoring system that uses the multi-core technology. Our system is compatible with existing programs, and it can detect the heap buffer overflows concurrently. Compared with the latest heap protection systems, our approach can achieves stronger security guarantees. Experiments show that iCruiser can detect heap buffer overflow attacks effectively with a little performance overhead.

KW - Heap buffer overflow

KW - Multi-core technology

UR - http://www.scopus.com/inward/record.url?scp=84897731590&partnerID=8YFLogxK

U2 - 10.1587/transinf.E97.D.601

DO - 10.1587/transinf.E97.D.601

M3 - Article

AN - SCOPUS:84897731590

SN - 0916-8532

VL - E97-D

SP - 601

EP - 605

JO - IEICE Transactions on Information and Systems

JF - IEICE Transactions on Information and Systems

IS - 3

ER -

ICruiser: An improved approach for concurrent heap buffer overflow monitoring

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this