• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>IEEE International Conference on Computer and Communications >Hardware-Based Adversary-Controlled States Tracking
【24h】

Hardware-Based Adversary-Controlled States Tracking

机译:基于硬件的对抗控制状态跟踪

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Return Oriented Programming is one of the most important software security challenges nowadays. It exploits memory vulnerabilities to control the state of the program and hijacks its control flow. Existing defenses usually focus on how to protect the control flow or face the challenge of how to maintain the taint markings for memory data. In this paper, we directly focus on the adversary-controlled states, simplify the classic dynamic taint analysis method to only track registers and propose Hardware-based Adversary-controlled States Tracking (HAST). HAST dynamically tracks registers that may be controlled by the adversary to detect ROP attack. It is transparent to user application and makes few modifications to existing hardware. Our evaluation demonstrates that HAST will introduce almost no performance overhead and can effectively detect ROP attacks without false positives on the tested common Linux applications.
机译:返回面向的编程是现在最重要的软件安全挑战之一。它利用内存漏洞来控制程序的状态并劫持其控制流程。现有的防御通常侧重于如何保护控制流程或面对如何维护内存数据的污染标记的挑战。在本文中,我们直接关注对手控制的状态,简化了经典的动态Taint分析方法,只能追踪寄存器并提出基于硬件的对抗控制状态跟踪(Hast)。 Hast动态跟踪可能由对手控制以检测ROP攻击的寄存器。对用户应用程序是透明的,对现有硬件进行了很少的修改。我们的评估表明,HAST将几乎没有表现开销,并且可以有效地检测ROP攻击,而在测试的常用Linux应用程序上没有误报。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号