Title :
LibsafeXP: A Practical and Transparent Tool for Run-time Buffer Overflow Preventions
Author :
Lin, Zhiqiang ; Mao, Bing ; Li Xie
Author_Institution :
State Key Lab. for Novel Software Tech., Nanjing Univ.
Abstract :
This paper presents a practical tool, LibsafeXP, to protect the software against the most common and severe attack, buffer overflows. As a dynamic shared library and an extension to Libsafe and LibsafePlus, LibsafeXP contains wrapper functions for all the buffer related functions in C standard library. These wrapper functions are enforced to check the source and target buffer´s size using the following information: global buffer knowledge extracted from the program symbol information, heap buffer knowledge by intercepting memory allocation family functions, and stack buffer bound information by dynamically determined from the frame pointer. Compared with other approaches, LibsafeXP is more transparent to programs: it works on binary mode, and neither requires the source code nor any debugging information. The performance and effectiveness evaluation indicates LibsafeXP could be used to defend against buffer overflow attacks and impose about 10 percent overhead on the protected software
Keywords :
buffer storage; security of data; software libraries; C standard library; LibsafeXP; memory allocation family functions; run-time buffer overflow preventions; stack buffer bound information; wrapper functions; Buffer overflow; Data mining; Geophysical measurement techniques; Ground penetrating radar; Protection; Runtime; Software debugging; Software libraries; Software performance; Software tools;
Conference_Titel :
Information Assurance Workshop, 2006 IEEE
Conference_Location :
West Point, NY
Print_ISBN :
1-4244-0130-5
DOI :
10.1109/IAW.2006.1652114
