摘要： 针对现有的地址空间随机化技术实施随机化时机有限的问题，提出一种在运行时刻能重复随机化部分地址空间对象的方法。通过修改动态连接器，在不重新启动受保护进程的情况下，重复随机化地址空间中的动态共享库。分析结果表明，该方法可成功地将攻击概率从O(pT)降低到 ，进一步增强地址空间随机化技术的防御能力。

关键词: 地址空间随机化, 细粒度随机化, 静态随机化, 动态随机化, 重复随机化

Abstract: Due to current address-space randomization techniques having only limited timings to deploy randomization, this paper proposes a new method to re-randomize the address space at runtime. By modifying the dynamic linker, this new method can randomize some kind of dynamic shared libraries in address space of target process without restarting. The result of analysis shows that the new method can reduce the probability of successful attack from O(pT) to .

Key words: address-space randomization, fine-grained randomization, static randomization, dynamic randomization, re-randomization

中图分类号: 

• TP309.2