DocumentCode
2564506
Title
Diversified Process Replicÿ for Defeating Memory Error Exploits
Author
Bruschi, Danilo ; Cavallaro, Lorenzo ; Lanzi, Andrea
Author_Institution
Dipartimento di Informatica e Comunicazione, UniversitÃ\xa0 degli Studi di Milano, Via Comelico 39/41, I-20135, Milano MI, Italy. bruschi@security.dico.unimi.it, sullivan@security.dico.unimi.it
fYear
2007
fDate
39173
Firstpage
434
Lastpage
441
Abstract
An interpretation of the notion of software diversity is based on the concept of diversified process replicÿ. We define pr as the replica of a process p which behaves identically to p but has some "structural" diversity from it. This makes possible to detect memory corruption attacks in a deterministic way. In our solution, p and pr differ in their address space which is properly diversified, thus defeating absolute and partial overwriting memory error exploits. We also give a characterization and a preliminary solution for shared memory management, one of the biggest practical issue introduced by this approach. Speculation on how to deal with synchronous signals delivery is faced as well. A user space proof-of-concept prototype has been implemented. Experimental results show a 68.93% throughput slowdown on a worst-case, while experiencing only a 1.20% slowdown on a best-case.
Keywords
Biological information theory; Biology computing; Computer errors; Computer security; Error correction; Memory management; Protection; Prototypes; Throughput; USA Councils;
fLanguage
English
Publisher
ieee
Conference_Titel
Performance, Computing, and Communications Conference, 2007. IPCCC 2007. IEEE Internationa
Conference_Location
New Orleans, LA, USA
ISSN
1097-2641
Print_ISBN
1-4244-1138-6
Electronic_ISBN
1097-2641
Type
conf
DOI
10.1109/PCCC.2007.358924
Filename
4197960
Link To Document