作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2007, Vol. 33 ›› Issue (16): 142-143,. doi: 10.3969/j.issn.1000-3428.2007.16.049

• 安全技术 • 上一篇    下一篇

缓冲区溢出攻击检测技术的分析和研究

徐启杰,薛 质   

  1. (上海交通大学信息安全工程学院,上海 200030)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2007-08-20 发布日期:2007-08-20

Analysis and Study of Buffer Overflow Attack Detection Technology

XU Qi-jie, XUE Zhi   

  1. (School of Information Security Engineering, Shanghai Jiaotong University, Shanghai 200030)
  • Received:1900-01-01 Revised:1900-01-01 Online:2007-08-20 Published:2007-08-20

摘要:

缓冲区溢出攻击是目前最具威胁的攻击方式之一,对信息安全造成了极大的危害。该文通过分析缓冲区溢出攻击的原理,归纳出攻击所必需的3个步骤,根据检测这3个攻击步骤,将当前最常用的缓冲区溢出攻击检测技术分为3种类型,并对其进行了分析和研究。

关键词: 缓冲区溢出, ShellCode, 攻击检测

Abstract: Buffer overflow attack is one of the most threatening attack types and it jeopardizes information security a lot. According to the principle of the attack, this paper generalizes three necessary steps of a buffer overflow attack. It divides the most popular technologies of buffer overflow attack detection into three types in light of detecting the three attack steps, and also analyzes and studies those technologies.

Key words: buffer overflow, ShellCode, attack detection

中图分类号: