• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>International Symposium on Cyberspace Safety and Security >An Online Approach to Defeating Return-Oriented-Programming Attacks
【24h】

An Online Approach to Defeating Return-Oriented-Programming Attacks

机译:在线方法来击败以返回以返回的编程攻击

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Return-oriented programming (ROP) attacks become very popular in recent years, as these attacks can bypass traditional defense mechanisms such as data execution prevention (DEP) effectively. Previous solutions suffer from limitations in that: (1) Some methods need to modify the target programs; (2) Some methods introduce considerable performance cost; (3) Almost all methods could not provide an online protection for the target processes. In this paper, we present OnDrop, an on-the-fly ROP protection system by using the OS internal facilities. Our system is compatible with the existing programs, and its protection layer can be added on demand. The experiments show that OnDrop can detect ROP attacks effectively with a little performance overhead.
机译:近年来,以返回返回的编程(ROP)攻击变得非常受欢迎,因为这些攻击可以绕过传统的防御机制,如数据执行预防(DEP)。以前的解决方案患有局限性:(1)一些方法需要修改目标计划; (2)一些方法引入了相当大的性能成本; (3)几乎所有方法都无法为目标流程提供在线保护。在本文中,我们通过使用OS内部设施呈现OnDrop,这是一款可在线ROP保护系统。我们的系统与现有程序兼容,可以按需添加其保护层。实验表明,OnDrop可以有效地检测ROP攻击,表现略有表现。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号