Improving Compiler to Prevent Buffer Overflow Attack

摘要

Recently, the cases of hacking that use buffer overflow vulnerabilities, are increasing. Although the buffer overflow problem has been known for a long time, for the following reasons, it continues to present a serious security threat. Detection methods of buffer overflow attack are defense methods that do not allow overwriting at all, overwriting but do not allow unauthorized change of control flow and allow change of control flow, hut prevents execution of injected code. This paper presents a solution to the problem of buffer overflow attacks: Defense methods in this belong to the second method of previously described ones. The existing defense method has some demerits. There needs the additional memory space. There takes more time than the original time in execution The code is added to prevent unauthorized change of control flow by compiler and is executed. In this paper, we propose new method that is more efficient than the existing method. we reduced the user of the additional memoiy space to the minimum in order to reduce the memory waste. It is the minimum that the processes prevent an authorized change of control flow