Integrating offline analysis and online protection to defeat buffer overflow attacks

Donghai Tian*, Xi Xiong, Changzhen Hu, Peng Liu

*此作品的通讯作者

科研成果: 书/报告/会议事项章节会议稿件同行评审

1 引用 (Scopus)

摘要

Nowadays Buffer overflow attacks are still recognized as one of the most severe threats in software security. Previous solutions suffer from limitations in that: 1) Some methods based on compiler extensions have limited practicality because they need to access source code; 2) Other methods that need to modify some aspects of the operating system or hardware require much deployment effort; 3) Almost all methods are unable to deploy a runtime protection for programs that cannot afford to restart. In this paper, we propose PHUKO, an on-the-fly buffer overflow prevention system which leverages virtualization technology. PHUKO offers the protected program a fully transparent environment and an easy deployment without the need to restart the program. The experiments show that our system can defend against realistic buffer overflow attacks effectively with moderate performance overhead.

源语言英语
主期刊名Information Security - 13th International Conference, ISC 2010, Revised Selected Papers
出版商Springer Verlag
409-415
页数7
ISBN(印刷版)9783642181771
DOI
出版状态已出版 - 2011

出版系列

姓名Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
6531 LNCS
ISSN(印刷版)0302-9743
ISSN(电子版)1611-3349

指纹

探究 'Integrating offline analysis and online protection to defeat buffer overflow attacks' 的科研主题。它们共同构成独一无二的指纹。

引用此