Gadaleta et al. explore the use of virtualization "to implement a countermeasure against buffer overflow attacks." The idea is to emulate the already existing techniques-in particular, the return address defender (RAD) technique-avoiding the performance penalty introduced by them.rnBasically, the authors propose modifying the instruction set of the architectures. They obtain this by modifyingrnthe set of instructions that is emulated by a hypervisor. This incurs a high overhead, so an alternative to hardware implementation is emulated by modifying a QEMU virtual machine.
展开▼
