摘要: 以“缓冲区溢出”为代表的控制数据漏洞已成为最常见的安全隐患,这些漏洞是依靠修改目标进程的控制数据,使目标进程转向某一段事先注入的恶意代码,从而导致恶意代码以目标进程当前用户的权限而被执行。随机化技术是针对控制数据漏洞的有效手段,但仍无法阻止控制数据被恶意修改。基于指针备份的随机化技术可以对控制数据攻击做出及时、准确的处理,加强了原有模型的抗攻击强度。
关键词:
漏洞,
缓冲区溢出,
内存随机化,
控制数据随机化
Abstract: Control data vulnerability, characterized by buffer overflow, is the most common security problems. When exploited, the attacker tries to rewrite the value of some control data in the target process to redirect the control flow to the prepared malicious code. In this way, the malicious code is executed under the current user’s rights of the target process. Randomization is an effective technique to defend against control data vulnerability, but it still can not protect the control data from being modified. This article proposes a randomization technology based on pointer backups. The model can act upon attacks in time and exactly, so it strengthens the original technique a lot.
Key words:
vulnerability,
buffer overflow,
memory layout randomization,
control data randomization
中图分类号:
王立民;曾凡平;李 琴. 基于指针备份的随机化技术[J]. 计算机工程, 2007, 33(17): 187-189.
WANG Li-min; ZENG Fan-ping; LI Qin. Randomization Technology Based on Pointer Backups[J]. Computer Engineering, 2007, 33(17): 187-189.