摘要
缓冲区溢出攻击已经成为网络安全威胁中最为严重的一类,而嵌入式网络安全设备则更需要有抗缓冲区溢出攻击的能力。在分析了缓冲区溢出的基本原理以及抗缓冲区溢出攻击的方法后,提出建立全新的嵌入式网络安全设备的安全架构,并构建多层次的抗缓冲区溢出攻击机制。根据网络安全设备的特点和特殊需求,详细阐述了适合嵌入式网络安全设备需要的多层次,全方位的抗缓冲区溢出攻击机制。
Buffer overflow are one of the most exploited class of security vulnerabilities. With more embedded system networked, it becomes an important research problem to defend embedded network security systems against buffer overflow attacks. The various types of buffer overflow vulnerabilities and attacks as well as the various defensive measures are surveyed. A new architecture for embedded network security system is proposed and a multi-level protection against buffer overflow is expounded.
出处
《计算机工程与设计》
CSCD
北大核心
2006年第16期2918-2920,2924,共4页
Computer Engineering and Design
基金
国家863高技术研究发展计划基金项目(2003AA144050)