| Linux内核提权攻击研究 |
| |
| 引用本文: | 左玉丹,丁滟,魏立峰.Linux内核提权攻击研究[J].计算机工程与科学,2016,38(11):2234-2239. |
| |
| 作者姓名: | 左玉丹 丁滟 魏立峰 |
| |
| 作者单位: | ;1.国防科学技术大学计算机学院 |
| |
| 基金项目: | 国家自然科学基金(61502510);信息保障技术重点实验室开放基金(KJ 15 101);装备预研重点基金(9140A15070213KG01043) |
| |
| 摘 要: | 提权攻击是针对Linux系统的一种重要攻击手段。根据提权攻击所利用的漏洞类型,一般可将其分为应用层提权攻击和内核提权攻击。现有的防御技术已经能够防御基本的应用层提权攻击,但是并不能完全防御内核提权攻击,内核提权攻击仍是Linux系统面临的一个重要威胁。内核提权攻击一般通过利用内核提权漏洞进行攻击。针对内核提权攻击,分析研究了基本的内核提权漏洞利用原理以及权限提升方法,并对典型的内核提权攻击防御技术进行了分析。最后通过实验对SELinux针对内核提权攻击的防御效果进行了分析验证,并针对发现的问题指出了下一步具有可行性的研究方向。
|
| 关 键 词: | 提权攻击 内核漏洞 漏洞利用 系统安全 |
| 收稿时间: | 2015-09-07 |
| 修稿时间: | 2016-11-25 |
Kernel privilege escalation attacks on Linux |
| |
| ZUO Yu dan,DING Yan,WEI Li feng.Kernel privilege escalation attacks on Linux[J].Computer Engineering & Science,2016,38(11):2234-2239. |
| |
| Authors: | ZUO Yu dan DING Yan WEI Li feng |
| |
| Affiliation: | (College of Computer,National University of Defense Technology,Changsha 410073,China)
|
| |
| Abstract: | Privilege escalation attack is an important attack against the Linux. According to the types of exploited vulnerabilities, privilege escalation attacks can be classified into two categories: application level privilege escalation attack and kernel privilege escalation attack. Basic application level privilege escalation attacks can be prevented by the existing defense techniques, however, they cannot prevent kernel privilege escalation attacks fully. Kernel privilege escalation attacks are still one of the serious threats. We analyze the basic principles for exploiting kernel vulnerabilities and privilege escalation methods for kernel privilege escalation attacks, as well as some typical defense techniques. We analyze and verify the defense effects of the SELinux against kernel privilege escalation attacks, and point out future feasible research directions. |
| |
| Keywords: | privilege escalation kernel vulnerability vulnerability exploitation system security |
|
| 点击此处可从《计算机工程与科学》浏览原始摘要信息 |
|
点击此处可从《计算机工程与科学》下载全文 |
|
