CPM: Masking Code Pointers to Prevent Code Injection Attacks

PIETER PHILIPPAERTS; YVES YOUNAN; STUN MUYLLE; FRANK PIESSENS; SVEN LACHMUND; THOMAS WALTER

首页> 外文期刊>ACM Transaction on Information and System Security >CPM: Masking Code Pointers to Prevent Code Injection Attacks

【24h】

CPM: Masking Code Pointers to Prevent Code Injection Attacks

机译：CPM：屏蔽代码指针以防止代码注入攻击

获取原文

获取原文并翻译 | 示例

开具论文收录证明 >>

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Code Pointer Masking (CPM) is a novel countermeasure against code injection attacks on native code. By enforcing the correct semantics of code pointers, CPM thwarts attacks that modify code pointers to divert the application's control flow. It does not rely on secret values such as stack canaries and protects against attacks that are not addressed by state-of-the-art countermeasures of similar performance. This article reports on two prototype implementations on very distinct processor architectures, showing that the idea behind CPM is portable. The evaluation also shows that the overhead of using our countermeasure is very small and the security benefits are substantial.

机译：代码指针屏蔽（CPM）是一种针对本地代码的代码注入攻击的新颖对策。通过实施代码指针的正确语义，CPM阻止了修改代码指针以转移应用程序控制流的攻击。它不依赖于诸如堆栈金丝雀之类的秘密值，并且可以防止类似性能的最新对策无法解决的攻击。本文报告了在非常不同的处理器体系结构上的两种原型实现，表明CPM背后的思想是可移植的。评估还表明，使用我们的对策的开销非常小，安全性收益非常可观。

著录项

来源
《ACM Transaction on Information and System Security》 |2013年第1期|1.1-1.27|共27页
作者
PIETER PHILIPPAERTS; YVES YOUNAN; STUN MUYLLE; FRANK PIESSENS; SVEN LACHMUND; THOMAS WALTER;
展开▼
作者单位

DistriNet Research Group, University of Leuven, Celestijnlaan 200A, B-3001 Leuven, Belgium;

DistriNet Research Group, University of Leuven, Celestijnlaan 200A, B-3001 Leuven, Belgium;

DistriNet Research Group, University of Leuven, Celestijnlaan 200A, B-3001 Leuven, Belgium;

DistriNet Research Group, University of Leuven, Celestijnlaan 200A, B-3001 Leuven, Belgium;

DOCOMO Euro-Labs, Landsberger Strasse 312, 80687 Munich, Germany;

DOCOMO Euro-Labs, Landsberger Strasse 312, 80687 Munich, Germany;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Code injection; code pointer; countermeasure; masking;

机译：代码注入;代码指针;对策;掩蔽;

相似文献

外文文献
中文文献
专利

1. CPM: masking code pointers to prevent code injection attacks [J] . W. M. Waite Computing reviews . 2013,第12期

机译：CPM：屏蔽代码指针以防止代码注入攻击
2. Exploiting Small Leakages in Masks to Turn a Second-Order Attack into a First-Order Attack and Improved Rotating Substitution Box Masking with Linear Code Cosets [J] . AlexanderDeTrano, NaghmehKarimi, RameshKarri, ScientificWorldJournal . 2015,第3期

机译：利用掩模的小泄漏将二阶攻击转换为一阶攻击，并改善了用线性代码脚本的旋转替代盒屏蔽
3. An Architectural Approach to Preventing Code Injection Attacks [J] . Riley Ryan, Jiang Xuxian, Xu Dongyan Dependable and Secure Computing, IEEE Transactions on . 2010,第4期

机译：防止代码注入攻击的体系结构方法
4. Code Pointer Masking: Hardening Applications against Code Injection Attacks [C] . Pieter Philippaerts, Yves Younan, Stijn Muylle, Detection of intrusions and malware, and vulnerability assessment. . 2011

机译：代码指针屏蔽：针对代码注入攻击强化应用程序
5. Using Code Inspection, Code Modification, and Machine Learning to prevent SQL Injection. [D] . Trumble, Brandon. 2015

机译：使用代码检查，代码修改和机器学习来防止SQL注入。
6. Exploiting Small Leakages in Masks to Turn a Second-Order Attack into a First-Order Attack and Improved Rotating Substitution Box Masking with Linear Code Cosets [O] . Alexander DeTrano, Naghmeh Karimi, Ramesh Karri, 2015

机译：利用掩膜中的小泄漏将二阶攻击转变为一阶攻击并利用线性代码陪集改进旋转替换盒掩蔽
7. CPM: Masking code pointers to prevent code injection attacks [O] . Philippaerts Pieter, Younan Yves, Muylle Stijn, 2013

机译：CPM：屏蔽代码指针以防止代码注入攻击

CPM: Masking Code Pointers to Prevent Code Injection Attacks

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅