Improving address space randomization with a dynamic offset randomization technique

Proceedings of the ACM Symposium on Applied Computing

Volumn 1, Issue , 2006, Pages 384-391

  Xu, Haizhi ^a   Chapin, Steve J ^b  

^a SYRACUSE UNIVERSITY   (United States)

^b Syracuse University   (United States)

Author keywords

Address space randomization; Code islands; Denialof service attacks; Derandomization attacks; Intrusion mitigation

Indexed keywords

CODES (SYMBOLS); COMPUTER CRIME; CONFORMAL MAPPING; DATA STORAGE EQUIPMENT; FUNCTION EVALUATION; INFORMATION ANALYSIS;

ADDRESS SPACE RANDOMIZATION (ASR); CODE ISLANDS; DENIALOF SERVICE ATTACKS; DERANDOMIZATION ATTACKS; INTRUSION MITIGATION;

RANDOM PROCESSES;

EID: 33751041736     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1141277.1141364     Document Type: Conference Paper

References (24)

1. Aleph One. Smashing The Stack For Pun And Profit. www.Phrack.org, 49(14), November 1996.
2. E. G. Barrantes, D. H. Ackley, S. Forrest, T. S. Palmer, D. Stefanovic, and D. D. Zovi. Randomized Instruction Set Emulation to Disrupt Binary Code Injection Attacks. In Proceedings of the 10th ACM Conference On Computer And Communication Security, October 2003.
3. M. Bernaschi, E. Gabrielli, and L. V. Mancini. Enhancements to the linux kernel for blocking buffer overflow based attacks. In 4th Linux showcase & conference, October 2000.
4. S. Bhatkar, D. C. DuVarney, and R. Sekar. Address Obfuscation: An Efficient Approach to Combat a Broad Range of Memory Error Exploits. In Proceedings of the 12th USENIX Security Symposium, Washington D.C., August 2003.
5. S. Bhatkar, R. Sekar, and D. C. DuVarney. Efficient techniques for comprehensive protection from memory error exploits. In Proceedings of the 14th USENIX Security Symposium, Baltimore, MD, August 2005.
6. C. Cowan, S. Beattie, J. Johansen, and P. Wagle. Pointguard: Protecting pointers from buffer overflow vulnerabilities. In Proceedings of the 12th USENIX Security Symposium, August 2003.
7. U. Drepper. How to write shared libraries, January 2005. http://people.redhat.com/drepper/dsohowto.pdf.
8. T. Durden. Bypassing PaX ASLR protection. www.Phrack.org, 59(9), June 2002.
9. eEye Digital Security. ANALYSIS. ida "Code Red" Worm, July 2001. http://www.eeye.com/html/research/advisories/AL20010717.html.
10. eEye Digital Security. Microsoft Internet Information Services Remote Buffer Overflow (SYSTEM Level Access), June 2001. http://www.eeye.com/html/ Research/Advisories/AD20010618.html.
11. S. Forrest, S. A. Hofmeyr, A. Somayaji, and T. A. Longstaff. A Sense of Self for Unix Processes. In Proceedings of the 1996 IEEE Symposium on Security and Privacy, 1996.
12. G. S. Kc, A. D. Keromytis, and V. Prevelakis. Countering Code-Injection Attacks With Instruction-Set Randomization. In Proceedings of the 10th ACM Conference On Computer And Communication Security, October 2003.
13. Z. Liang and R. Sekar. Automated, Sub-second Attack Signature Generation: A Basis for Building Self-Protecting Servers. Technical report, Department of Computer Science, Stony Brook University, May 2005.
14. Z. Liang and R. Sekar. Fast and Automated Generation of Attack Signatures: A Basis for Building Self-Protecting Servers. In Proceedings of the 12th ACM Conference on Computer and Communications Security, Alexandria, VA, November 2005.
15. Nergal. The Advanced Return-into-lib(c) Exploits. www.Phrack.org, 58(4), December 2001.
16. openwall. segvguard. ftp://ftp.pl.openwall.com/misc/segvguard/.
17. W. Purczynski. kNoX - Implementation of Non-Executable Page Protection Mechanism. http://www.opennet.ru/prog/info/1769.shtml, May 2003.
18. H. Shacham, M. Page, B. Pfaff, E.-J. Goh, N. Modadugu, and D. Boneh. On the Effectiveness of Address Space Randomization. In Proceedings of the 11th ACM Conference On Computer And Communication Security, Washington, DC, USA, October 2004.
19. Solar Designer. Non-Executable User Stack. http://www.openwall.com/ lintrx/.
20. N. Sovarel, D. Evans, and N. Paul. Where's the FEEB? The Effectiveness of Instruction Set Randomization. In Proceedings of the 14th USENIX Security Symposium, Baltimore, MD, August 2005.
21. the Pax team. PaX address space layout randomization (ASLR). http://pax.grsecurity.net/docs/ask.txt.
22. D. Wagner and P. Soto. Mimicry Attacks on Host-Based Intrusion Detection Systems. In Proceedings of the 9th ACM Conference On Computer And Communication Security, Washington, DC, USA, November 2002.
23. J. Xu, Z. Kalbarczyk, and R. K. Iyer. Transparent Runtime Randomization for Security. In Proceedings of the 22nd Symposium on Reliable and Distributed Systems (SRDS), Florence, Italy, October 2003.
24. J. Xu, P. Ning, C. Kil, Y. Zhai, and C. Bookholt. Automatic Diagnosis and Response to Memory Corruption Vulnerabilities. In Proceedings of the 12th ACM Conference on Computer and Communications Security, Alexandria, VA, November 2005.