首页>
外国专利>
METHOD AND SYSTEM FOR SECURING A COMPUTER EXECUTING ENVIRONMENT AGAINST TYPE CONFUSION ATTACKS
METHOD AND SYSTEM FOR SECURING A COMPUTER EXECUTING ENVIRONMENT AGAINST TYPE CONFUSION ATTACKS
展开▼
机译:防止类型混淆攻击的计算机执行环境的方法和系统
展开▼
页面导航
摘要
著录项
相似文献
摘要
The invention relates to securing an execution environment, in particular Java Card, against type confusion attacks. An origin reference is assigned to an object of an object-oriented programming language when it is instantiated in the runtime environment. The instantiated object is accessed using said assigned home reference. According to the invention, any reference to the instantiated object is stored in a memory area of the computer execution environment as a transformed original reference so that basic instructions executed in the runtime environment manipulate the object. object instantiated from the transformed reference. The transformation consists in applying, to the reference of origin, the function a.x + b mod p, where x is the reference of origin, a and b are two random parameters and p is the largest prime number such as p 2n, where n is the binary length of the references.
展开▼
机译:本发明涉及保护执行环境,特别是Java Card,以防类型混淆攻击。在运行时环境中实例化原始引用时,会将其分配给面向对象编程语言的对象。使用所述分配的原始参考来访问实例化的对象。根据本发明,对实例化对象的任何引用都作为转换后的原始引用存储在计算机执行环境的存储区域中,以便在运行时环境中执行的基本指令操纵该对象。从转换后的引用实例化的对象。转换包括将函数ax + b mod p应用于原点参考,其中x是原点参考,a和b是两个随机参数,p是最大质数,例如p <2n,其中n是引用的二进制长度。
展开▼
