首页 | 本学科首页   官方微博 | 高级检索  
     

基于动态二进制平台的缓冲区溢出过程分析
引用本文:董鹏程,舒辉,康绯,王乾,魏巍. 基于动态二进制平台的缓冲区溢出过程分析[J]. 计算机工程, 2012, 38(6): 66-68
作者姓名:董鹏程  舒辉  康绯  王乾  魏巍
作者单位:1. 解放军信息工程大学信息工程学院,郑州,450002
2. 61741部队,北京,100094
摘    要:提出一种基于动态二进制平台的缓冲区溢出过程分析方法,并实现基于该方法的原型系统。分析缓冲区溢出攻击方法的特点,给出基于异常捕获、控制流分析和内存状态检查的溢出检测方法。通过对内存读写指令、控制转移指令进行监控,获得函数调用序列和数据传递关系,定位导致缓冲区溢出的代码。实验结果表明,该系统能有效检测缓冲区溢出,准确定位导致溢出的代码位置。

关 键 词:缓冲区溢出  动态二进制平台  溢出检测  溢出定位  控制流分析  数据流分析
收稿时间:2011-06-28

Process Analysis of Buffer Overflow Based on Dynamic Binary Platform
DONG Peng-cheng , SHU Hui , KANG Fei , WANG Qian , WEI Wei. Process Analysis of Buffer Overflow Based on Dynamic Binary Platform[J]. Computer Engineering, 2012, 38(6): 66-68
Authors:DONG Peng-cheng    SHU Hui    KANG Fei    WANG Qian    WEI Wei
Affiliation:1.Institute of Information Engineering,PLA Information Engineering University,Zhengzhou 450002,China;2.61741 Troops,Beijing 100094,China)
Abstract:This paper proposes an process analysis method for buffer overflow based on dynamic binary platform,and a prototype system based on this method is implemented.According to the principle of buffer overflow attacks,overflow detection method based on exception caught,control flow analysis,and memory status checks is implemented.By monitoring memory read and write,control transfer instructions,system obtains call sequences and data transfer flow.Through analysis of memory data and function calls,orientation code leads to buffer overflow.Experimental results show that the system can detect buffer overflows,and accurate positioning code results in buffer overflow.
Keywords:buffer overflow  dynamic binary platform  overflow detection  overflow positioning  control flow analysis  data flow analysis
本文献已被 CNKI 维普 万方数据 等数据库收录!
点击此处可从《计算机工程》浏览原始摘要信息
点击此处可从《计算机工程》下载免费的PDF全文
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号