| OverflowDungeon:一种新颖的溢出攻击防护系统 |
| |
| 引用本文: | 韩宏,卢显良,任立勇,杨宁.OverflowDungeon:一种新颖的溢出攻击防护系统[J].计算机科学,2006,33(3):105-107. |
| |
| 作者姓名: | 韩宏 卢显良 任立勇 杨宁 |
| |
| 作者单位: | 电子科技大学计算机学院,成都,610054 |
| |
| 基金项目: | 信息产业部生产发展基金 |
| |
| 摘 要: | 溢出攻击是网络上威胁最大的一种攻击方式,现有的防护技术存在不同的缺陷.本文提出并实现了一种新颖的防护机制,它从阻止溢出攻击产生破环性效果入手,抑制攻击行为.该方式不需要修改编译器,或修改操作系统,具有很高的实用性,它采用了统计方式,可有效防护Dummy return攻击技术.试验结果表明,系统不仅能有效地阻止溢出攻击,在效率方面相对于其他方式也有显著优势.
|
| 关 键 词: | 溢出攻击 函数调用Tracing API调用基因校验 |
OverflowDungeon: A Novel Overflow Attack Prevention System |
| |
| HAN Hong,LU Xian-Liang,REN Li-Yong,YANG-Ning.OverflowDungeon: A Novel Overflow Attack Prevention System[J].Computer Science,2006,33(3):105-107. |
| |
| Authors: | HAN Hong LU Xian-Liang REN Li-Yong YANG-Ning |
| |
| Affiliation: | Computer Science Department of UESTC, Chengdu 610054 |
| |
| Abstract: | Overflow attack does the broadest harm to network applications. There are techniques which can prevent the kind of attack. However they have obvious flaws. This paper presents a novel mechanism of overflow attack prevention, which prevents shell code from exploiting resources of system. In this way, we need not change compiler or operating system. It uses statistic way to prevent dummy return trick. The implementation shows that it can prevent overflow attack and has advantage of performance over other mechanisms. |
| |
| Keywords: | API Hook |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
点击此处可从《计算机科学》下载全文 |
