| 运行时刻的地址空间重复随机化方法 |
| |
| 引用本文: | 陆明,王小黎,谢立.运行时刻的地址空间重复随机化方法[J].计算机工程,2009,35(10):139-141. |
| |
| 作者姓名: | 陆明 王小黎 谢立 |
| |
| 作者单位: | 南京大学计算机科学与技术系计算机软件新技术国家重点实验室,南京,210093 |
| |
| 基金项目: | 江苏省科学技术厅基金 |
| |
| 摘 要: | 针对现有的地址空间随机化技术实施随机化时机有限的问题,提出一种在运行时刻能重复随机化部分地址空间对象的方法。通过修改动态连接器,在不重新启动受保护进程的情况下,重复随机化地址空间中的动态共享库。分析结果表明,该方法可成功地将攻击概率从O(ρ^T)降低到O(ρ^T2),进一步增强地址空间随机化技术的防御能力。
|
| 关 键 词: | 地址空间随机化 细粒度随机化 静态随机化 动态随机化 重复随机化 |
| 修稿时间: | |
Method of Address-space Re-randomization at Runtime |
| |
| LU Ming,WANG Xiao-li,XIE Li.Method of Address-space Re-randomization at Runtime[J].Computer Engineering,2009,35(10):139-141. |
| |
| Authors: | LU Ming WANG Xiao-li XIE Li |
| |
| Affiliation: | State Key Laboratory of Novel Computer Software Technology;Department of Computer Science and Technology;Nanjing University;Nanjing 210093 |
| |
| Abstract: | Due to current address-space randomization techniques having only limited timings to deploy randomization,this paper proposes a new method to re-randomize the address space at runtime.By modifying the dynamic linker,this new method can randomize some kind of dynamic shared libraries in address space of target process without restarting.The result of analysis shows that the new method can reduce the probability of successful attack from O(pT) to O(pT2). |
| |
| Keywords: | address-space randomization fine-grained randomization static randomization dynamic randomization re-randomization |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载全文 |
