TY - GEN
T1 - Offensive and Defensive Countermeasure Technology of Return-Oriented Programming
AU - Xu, Zixuan
AU - Zhang, Jingci
AU - Ai, Shang
AU - Liang, Chen
AU - Liu, Lu
AU - Li, Yuanzhang
N1 - Publisher Copyright:
© 2021 IEEE.
PY - 2021
Y1 - 2021
N2 - The problem of buffer overflow in the information system is not threatening, and the system's own defense mechanism can detect and terminate code injection attacks. However, as countermeasures compete with each other, advanced stack overflow attacks have emerged: Return Oriented-Programming (ROP) technology, which has become a hot spot in the field of system security research in recent years. First, this article explains the reason for the existence of this technology and the attack principle. Secondly, it systematically expounds the realization of the return-oriented programming technology at home and abroad in recent years from the common architecture platform, the research of attack load construction, and the research of variants based on ROP attacks. Finally, we summarize the paper.
AB - The problem of buffer overflow in the information system is not threatening, and the system's own defense mechanism can detect and terminate code injection attacks. However, as countermeasures compete with each other, advanced stack overflow attacks have emerged: Return Oriented-Programming (ROP) technology, which has become a hot spot in the field of system security research in recent years. First, this article explains the reason for the existence of this technology and the attack principle. Secondly, it systematically expounds the realization of the return-oriented programming technology at home and abroad in recent years from the common architecture platform, the research of attack load construction, and the research of variants based on ROP attacks. Finally, we summarize the paper.
KW - confrontation and defense
KW - development status
KW - return-oriented programming
KW - system security
UR - http://www.scopus.com/inward/record.url?scp=85127441987&partnerID=8YFLogxK
U2 - 10.1109/iThings-GreenCom-CPSCom-SmartData-Cybermatics53846.2021.00046
DO - 10.1109/iThings-GreenCom-CPSCom-SmartData-Cybermatics53846.2021.00046
M3 - Conference contribution
AN - SCOPUS:85127441987
T3 - Proceedings - IEEE Congress on Cybermatics: 2021 IEEE International Conferences on Internet of Things, iThings 2021, IEEE Green Computing and Communications, GreenCom 2021, IEEE Cyber, Physical and Social Computing, CPSCom 2021 and IEEE Smart Data, SmartData 2021
SP - 224
EP - 228
BT - Proceedings - IEEE Congress on Cybermatics
A2 - Zheng, James
A2 - Liu, Xiao
A2 - Luan, Tom Hao
A2 - Jayaraman, Prem Prakash
A2 - Dai, Haipeng
A2 - Mitra, Karan
A2 - Qin, Kai
A2 - Ranjan, Rajiv
A2 - Wen, Sheng
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 2021 IEEE Congress on Cybermatics: 14th IEEE International Conferences on Internet of Things, iThings 2021, 17th IEEE International Conference on Green Computing and Communications, GreenCom 2021, 2021 IEEE International Conference on Cyber Physical and Social Computing, CPSCom 2021 and 7th IEEE International Conference on Smart Data, SmartData 2021
Y2 - 6 December 2021 through 8 December 2021
ER -