摘要
缓冲区溢出是一种最为常见的安全漏洞形式,在远程网络攻击中所占比重最大。地址空间随机化是一种针对缓冲区溢出攻击的有效防护技术。分别从栈、堆、动态库和可执行映像四个方面描述了地址空间随机化在FreeBSD6.0中的设计和实现,并对其防护果进行了评估。
Buffer overflow is one of most known security holes, and most of the remote network attacks are originated from it. Address space randomization is an effective defending technique against buffer overflow attacks. In this paper it describes the design and implementation of the address space randomization in FreeBSD6.0 from four aspects : stack, heap, dynamic library and executable image. The effectiveness evaluation of defence is also given.
出处
《计算机应用与软件》
CSCD
北大核心
2008年第6期1-2,13,共3页
Computer Applications and Software
基金
"十五"国家科技攻关计划项目支持(2005BA113A02)
关键词
地址空间随机化
栈随机化
缓冲区溢出
Address space randomization Stack randomization Buffer overflow
