• DocumentCode
    3348748
  • Title

    A New Approach against Stack Overrun: Separates the Stack to Two Parts

  • Author

    Du Jiang ; Mai, Jian

  • Author_Institution
    Dept. of Comput. Sci. & Technol., Chongqing Univ. of Post & Telecommun., Chongqing, China
  • fYear
    2011
  • fDate
    21-23 Oct. 2011
  • Firstpage
    441
  • Lastpage
    444
  • Abstract
    Since 1980s, stack overrun has been discussed all around the world. At the same time, more and more people began to have a deep research for the attack which exploiting stack overflows. Many solutions have been proposed to protect against a direct stack smashing attack overwriting a return address. In this paper, we present a new approach against stack overrun. Our new countermeasure does not rely on exception handle (Such as Safe SEH) or secret values (Such as canaries). Our opinion separates the standard stack to two parts, original stack saves the return address and the address of buffer with read permissions only, and the true values of buffer we save in other space. Then the former saved address as a pointer link to our space of the values in buffer. This approach synthesizes several customized protections against stack overflow.
  • Keywords
    buffer storage; security of data; buffer address; direct stack smashing attack protection; pointer link; read permissions; return address; stack overflows; stack overrun; Arrays; Buffer overflow; Buffer storage; Computers; Layout; Programming; Security; Stack Overrun; stack overflows;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Instrumentation, Measurement, Computer, Communication and Control, 2011 First International Conference on
  • Conference_Location
    Beijing
  • Print_ISBN
    978-0-7695-4519-6
  • Type

    conf

  • DOI
    10.1109/IMCCC.2011.116
  • Filename
    6154141
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3348748