DocumentCode :
2564506
Title :
Diversified Process Replicÿ for Defeating Memory Error Exploits
Author :
Bruschi, Danilo ; Cavallaro, Lorenzo ; Lanzi, Andrea
Author_Institution :
Dipartimento di Informatica e Comunicazione, UniversitÃ\xa0 degli Studi di Milano, Via Comelico 39/41, I-20135, Milano MI, Italy. bruschi@security.dico.unimi.it, sullivan@security.dico.unimi.it
fYear :
2007
fDate :
39173
Firstpage :
434
Lastpage :
441
Abstract :
An interpretation of the notion of software diversity is based on the concept of diversified process replicÿ. We define pr as the replica of a process p which behaves identically to p but has some "structural" diversity from it. This makes possible to detect memory corruption attacks in a deterministic way. In our solution, p and pr differ in their address space which is properly diversified, thus defeating absolute and partial overwriting memory error exploits. We also give a characterization and a preliminary solution for shared memory management, one of the biggest practical issue introduced by this approach. Speculation on how to deal with synchronous signals delivery is faced as well. A user space proof-of-concept prototype has been implemented. Experimental results show a 68.93% throughput slowdown on a worst-case, while experiencing only a 1.20% slowdown on a best-case.
Keywords :
Biological information theory; Biology computing; Computer errors; Computer security; Error correction; Memory management; Protection; Prototypes; Throughput; USA Councils;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Performance, Computing, and Communications Conference, 2007. IPCCC 2007. IEEE Internationa
Conference_Location :
New Orleans, LA, USA
ISSN :
1097-2641
Print_ISBN :
1-4244-1138-6
Electronic_ISBN :
1097-2641
Type :
conf
DOI :
10.1109/PCCC.2007.358924
Filename :
4197960
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=2564506
بازگشت