Run-time Detection of Buffer Overflow Attacks without Explicit Sensor Data Objects

Las Vegas, Nevada April 05-April 07

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ITCC.2004.1286425

International Conference on Informati ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Changwoo Pyo Articles by Byungchul Bae Articles by Taejin Kim Articles by Gyungho Lee

	ASCII Text	x
	Changwoo Pyo, Byungchul Bae, Taejin Kim, Gyungho Lee, "Run-time Detection of Buffer Overflow Attacks without Explicit Sensor Data Objects," Information Technology: Coding and Computing, International Conference on, vol. 1, pp. 50, International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 1, 2004.

	BibTex	x
	@article{ 10.1109/ITCC.2004.1286425, author = {Changwoo Pyo and Byungchul Bae and Taejin Kim and Gyungho Lee}, title = {Run-time Detection of Buffer Overflow Attacks without Explicit Sensor Data Objects}, journal ={Information Technology: Coding and Computing, International Conference on}, volume = {1}, year = {2004}, isbn = {0-7695-2108-8}, pages = {50}, doi = {http://doi.ieeecomputersociety.org/10.1109/ITCC.2004.1286425}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Information Technology: Coding and Computing, International Conference on TI - Run-time Detection of Buffer Overflow Attacks without Explicit Sensor Data Objects SN - 0-7695-2108-8 SP EP A1 - Changwoo Pyo, A1 - Byungchul Bae, A1 - Taejin Kim, A1 - Gyungho Lee, PY - 2004 KW - null VL - 1 JA - Information Technology: Coding and Computing, International Conference on ER -

Changwoo Pyo, Hongik University, Korea

Byungchul Bae, National Security Research Institute, Korea

Taejin Kim, University of Illinois at Chicago

Gyungho Lee, University of Illinois at Chicago

This paper presents two schemes for detecting buffer overflow attacks at run-time. One is sensor embedding, which hides sensor data objects inside code pointers, and the other, stack frame inversion checking, which detects attacks by inspecting processor registers. Our methods make it difficult for attackers to guess the locations of sensors so that they cannot easily bypass sensors when they attempt to access code pointers. We have implemented the schemes by extending the GCC toolchain. Experimental data shows that our schemes provide programs with powerful detection and protection capabilities at the reasonable sacrifice of execution efficiency. Operating systems would improve on the defense against buffer overflow attacks by using our toolchain when they are built.

Citation:

Changwoo Pyo, Byungchul Bae, Taejin Kim, Gyungho Lee, "Run-time Detection of Buffer Overflow Attacks without Explicit Sensor Data Objects," itcc, vol. 1, pp.50, International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 1, 2004

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.