The continuing arms race : code-reuse attacks and defenses / Per Larsen, Ahmad-Reza Sadeghi
(ACM books. ISSN:23746777 ; #18)
データ種別 | 電子ブック |
---|---|
版 | First edition. |
出版者 | ([New York] ; [San Rafael, California] : Association for Computing Machinery : Morgan & Claypool) |
出版年 | 2018 |
大きさ | 1 PDF (xiii, 288 pages) : illustrations |
著者標目 | *Larsen, Per 1980- author Sadeghi, Ahmad-Reza author |
書誌詳細を非表示
一般注記 | Mode of access: World Wide Web Includes bibliographical references (pages [261]-281) 1. How memory safety violations enable exploitation of programs / Mathias Payer -- 1.1 Memory safety -- 1.2 Data integrity -- 1.3 Confidentiality -- 1.4 Data-flow and control-flow integrity -- 1.5 Policy enforcement -- 1.6 An adversary's toolkit -- 1.7 Conclusion -- 2. Protecting dynamic code / Gang Tan, Ben Niu -- 2.1 Overview of challenges and solutions -- 2.2 Type-based CFG generation -- 2.3 Handling dynamically linked libraries -- 2.4 Handling just-in-time compiled code -- 2.5 Related work -- 2.6 Conclusion -- 3. Diversity and information leaks / Stephen Crane, Andrei Homescu, Per Larsen, Hamed Okhravi, Michael Franz -- 3.1 Software diversity -- 3.2 Information leakage -- 3.3 Mitigating information leakage -- 3.4 Address oblivious code reuse -- 3.5 Countering address-oblivious code reuse -- 3.6 Evaluation of code-pointer authentication -- 3.7 Conclusion -- 4. Code-pointer integrity / Volodymyr Kuznetzov, Laszlo Szekeres, Mathias Payer, George Candea, R. Sekar, Dawn Song -- 4.1 Introduction -- 4.2 Related work -- 4.3 Threat model -- 4.4 Design -- 4.5 The formal model of CPI -- 4.6 Implementation -- 4.7 Evaluation -- 4.8 Conclusion -- 5. Evaluating control-flow restricting defenses / Enes Goktas, Elias Athanasopoulos, Herbert Bos, Georgios Portokalidis -- 5.1 Introduction -- 5.2 Control-flow restricting defenses -- 5.3 Security analysis -- 5.4 Quantifying gadget availability in CFR -- 5.5 Proof-of-concept exploit against CFR -- 5.6 Summary -- 6. Attacking dynamic code / Felix Schuster, Thorsten Holz -- 6.1 Goals and attacker model -- 6.2 Counterfeit object-oriented programming -- 6.3 Loopless counterfeit object-oriented programming -- 6.4 A framework for counterfeit object-oriented programming -- 6.5 Proof-of-concept exploits -- 6.6 Discussion -- 6.7 Security assessment of existing defenses -- 6.8 Conclusion -- 7. Hardware control flow integrity / Yier Jin, Dean Sullivan, Orlando Arias, Ahmad-Reza Sadeghi, Lucas Davi -- 7.1 Introduction -- 7.2 Threat model and assumptions -- 7.3 Requirements -- 7.4 Modeling CFI -- 7.5 Constructing a precise stateful CFI policy -- 7.6 Hardware-enhanced CFI: design and implementation -- 7.7 Security evaluation -- 7.8 Performance evaluation -- 7.9 Related work -- 7.10 Conclusion -- 8. Multi-variant execution environments / Bart Coppens, Bjorn De Sutter, Stijn Volckaert -- 8.1 General design of an MVEE -- 8.2 Implementation of GHUMVEE -- 8.3 Inconsistencies and false positive detections -- 8.4 Comprehensive protection against code-reuse attacks -- 8.5 Relaxed monitoring -- 8.6 Evaluation -- 8.7 Conclusion -- References -- Contributor biographies As human activities moved to the digital domain, so did all the well-known malicious behaviors including fraud, theft, and other trickery. There is no silver bullet, and each security threat calls for a specific answer. One specific threat is that applications accept malformed inputs, and in many cases it is possible to craft inputs that let an intruder take full control over the target computer system. The nature of systems programming languages lies at the heart of the problem. Rather than rewriting decades of well-tested functionality, this book examines ways to live with the (programming) sins of the past while shoring up security in the most efficient manner possible. We explore a range of different options, each making significant progress towards securing legacy programs from malicious inputs. The solutions explored include enforcement-type defenses, which excludes certain program executions because they never arise during normal operation. Another strand explores the idea of presenting adversaries with a moving target that unpredictably changes its attack surface thanks to randomization. We also cover tandem execution ideas where the compromise of one executing clone causes it to diverge from another thus revealing adversarial activities. The main purpose of this book is to provide readers with some of the most influential works on run-time exploits and defenses. We hope that the material in this book will inspire readers and generate new ideas and paradigms Also available in print Title from PDF title page (viewed on March 30, 2018) HTTP:URL=http://dx.doi.org/10.1145/3129743 Information=Abstract with links to full text |
---|---|
件 名 | LCSH:Computer security LCSH:Electronic books |
分 類 | LCC:QA76.9.A25 DC23:005.8 |
書誌ID | EB00004424 |
ISBN | 9781970001815 |
類似資料
この資料の利用統計
このページへのアクセス回数:2回
※2019年3月27日以降
全貸出数:0回
(1年以内の貸出:0回)
※2019年3月27日以降