计算机应用与软件2016,Vol.33Issue(5):312-316,5.DOI:10.3969/j.issn.1000-386x.2016.05.077
基于指令集随机化的代码注入型攻击防御技术
DEFENSE TECHNOLOGY AGAINST CODE-INJECTION ATTACKS BASED ON INSTRUCTION SET RANDOMISATION
摘要
Abstract
For current status quo that code-injection attack defense mechanisms are easily bypassed by attackers,we proposed a new defense technology which is based on instruction set randomisation.In this technology,we drew up randomisation rules of instruction set,that could be used to change the instructions in objs files so as to implement the randomisation of instruction set.The external injection codes are not compatible with the generated instruction set,when translated by the dynamic binary analysis platform,the program codes can be executed as usual but the injected codes become the disordered codes.Based on this technology we designed a set of prototype systems,and demonstrated through a large number of experiments that it was able to defense most of code-injection attacks.This technology breaks through the steady environment needed by exploiting the buffer overflow vulnerabilities and achieves the proactive defense against attacks.关键词
代码注入型攻击/指令集随机化/动态二进制分析/主动防御Key words
Code-injection attack/Instruction set randomisation/Dynamic binary analysis/Proactive defense分类
信息技术与安全科学引用本文复制引用
王奕森,舒辉,谢耀滨,赵利军..基于指令集随机化的代码注入型攻击防御技术[J].计算机应用与软件,2016,33(5):312-316,5.基金项目
国家高技术研究发展计划项目(2009 AA012200)。 ()
