|
|||||
|
|
| 嵌入式网络安全设备的抗缓冲区溢出攻击机制 | |
| 引用本文: | 杜皎,荆继武,李国辉.嵌入式网络安全设备的抗缓冲区溢出攻击机制[J].计算机工程与设计,2006,27(16):2918-2920,2924. |
| 作者姓名: | 杜皎 荆继武 李国辉 |
| 作者单位: | 1. 国防科技大学,信息系统与管理学院,湖南,长沙,410073;中国科学院,研究生院信息安全国家重点实验室,北京,100049 2. 中国科学院,研究生院信息安全国家重点实验室,北京,100049 3. 国防科技大学,信息系统与管理学院,湖南,长沙,410073 |
| 基金项目: | 国家高技术研究发展计划(863计划) |
| 摘 要: | 缓冲区溢出攻击已经成为网络安全威胁中最为严重的一类,而嵌入式网络安全设备则更需要有抗缓冲区溢出攻击的能力.在分析了缓冲区溢出的基本原理以及抗缓冲区溢出攻击的方法后,提出建立全新的嵌入式网络安全设备的安全架构,并构建多层次的抗缓冲区溢出攻击机制.根据网络安全设备的特点和特殊需求,详细阐述了适合嵌入式网络安全设备需要的多层次,全方位的抗缓冲区溢出攻击机制. |
| 关 键 词: | 嵌入式系统 网络安全设备 缓冲区溢出 抗缓冲区溢出攻击机制 |
| 文章编号: | 1000-7024(2006)16-2918-03 |
| 收稿时间: | 2005-06-10 |
| 修稿时间: | 2005-06-10 |
Protection against buffer overflow in embedded system |
|
| DU Jiao,JING Ji-wu,LI Guo-hui.Protection against buffer overflow in embedded system[J].Computer Engineering and Design,2006,27(16):2918-2920,2924. | |
| Authors: | DU Jiao JING Ji-wu LI Guo-hui |
| Affiliation: | 1. Department of Information System and Management, National University of Defense Technology, Changsha 410073, China; 2. State Key Laboratory of Information Security, Graduate School, Chinese Academy of Sciences, Beijing 100049, China |
| Abstract: | Buffer overflow are one of the most exploited class of security vulnerabilities. With more embedded system networked, it becomes an important research problem to defend embedded network security systems against buffer overflow attacks. The various types of buffer overflow vulnerabilities and attacks as well as the various defensive measures are surveyed. A new architecture for embedded network security system is proposed and a multi-level protection against buffer overflow is expounded. |
| Keywords: | embedded system network security system buffer overflow protection against buffer overflow |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! | |