語系:
繁體中文
English
說明(常見問題)
登入
回首頁
切換:
標籤
|
MARC模式
|
ISBD
Novel Techniques in Recovering, Embe...
~
Lin, Yan.
Novel Techniques in Recovering, Embedding, and Enforcing Policies for Control-Flow Integrity
紀錄類型:
書目-語言資料,印刷品 : Monograph/item
正題名/作者:
Novel Techniques in Recovering, Embedding, and Enforcing Policies for Control-Flow Integrity/ by Yan Lin.
作者:
Lin, Yan.
面頁冊數:
XIII, 95 p. 23 illus.online resource. :
Contained By:
Springer Nature eBook
標題:
Continuous Optimization. -
電子資源:
https://doi.org/10.1007/978-3-030-73141-0
ISBN:
9783030731410
Novel Techniques in Recovering, Embedding, and Enforcing Policies for Control-Flow Integrity
Lin, Yan.
Novel Techniques in Recovering, Embedding, and Enforcing Policies for Control-Flow Integrity
[electronic resource] /by Yan Lin. - 1st ed. 2021. - XIII, 95 p. 23 illus.online resource. - Information Security and Cryptography,2197-845X. - Information Security and Cryptography,.
Introduction -- Literature Review -- When Function Signature Recovery Meets Compiler Optimization -- Control-Flow Carrying Code -- Control-Flow Integrity Enforcement with Dynamic Code Optimization -- Conclusion -- Bibliography.
Control-Flow Integrity (CFI) is an attractive security property with which most injected and code-reuse attacks can be defeated, including advanced attacking techniques like return-oriented programming. CFI extracts a control-flow graph (CFG) for a given program, with checks inserted before indirect branch instructions. Before executed during runtime, the checks consult the CFG to ensure that the indirect branch is allowed to reach the intended target. Hence, any sort of control-flow hijacking can be prevented. This concise volume proposes novel solutions to handle the fundamental components of CFI enforcement: accurately recovering the policy (CFG); embedding the CFI policy securely; and efficiently enforcing the CFI policy. Addressing the first component, the book systematically studies two methods that recover CFI policy based on function signature matching at the binary level, then offers a unique rule- and heuristic-based mechanism to more accurately recover function signature. To embed CFI policy securely, the book advocates a new platform that encodes the policy into the machine instructions directly without relying on consulting any read-only data structure. Finally, the work prescribes a mature dynamic-code-optimization platform called DynamoRIO to enforce the policy when needed. Key features: Provides deep understanding of Control-Flow Integrity Offers new insights on the relationship between function signature and compiler optimization Demonstrates how CFI can be more efficient than Data Execution Prevention This focused, distinctive volume will appeal to researchers, scientists, lecturers, as well as postgraduates with a background in binary analysis. Libraries, practitioners, and professionals will also benefit, depending on their missions and programs. Yan Lin is at the School of Computing and Information Systems, Singapore Management University. Her extensive foundational studies have focused on the area of cybersecurity, and her current research focuses on software security and system security. .
ISBN: 9783030731410
Standard No.: 10.1007/978-3-030-73141-0doiSubjects--Topical Terms:
888956
Continuous Optimization.
LC Class. No.: QA76.9.A25
Dewey Class. No.: 005.8
Novel Techniques in Recovering, Embedding, and Enforcing Policies for Control-Flow Integrity
LDR
:03670nam a22004095i 4500
001
1053482
003
DE-He213
005
20210825191829.0
007
cr nn 008mamaa
008
220103s2021 sz | s |||| 0|eng d
020
$a
9783030731410
$9
978-3-030-73141-0
024
7
$a
10.1007/978-3-030-73141-0
$2
doi
035
$a
978-3-030-73141-0
050
4
$a
QA76.9.A25
072
7
$a
UR
$2
bicssc
072
7
$a
COM053000
$2
bisacsh
072
7
$a
UR
$2
thema
072
7
$a
UTN
$2
thema
082
0 4
$a
005.8
$2
23
100
1
$a
Lin, Yan.
$e
author.
$4
aut
$4
http://id.loc.gov/vocabulary/relators/aut
$3
1358371
245
1 0
$a
Novel Techniques in Recovering, Embedding, and Enforcing Policies for Control-Flow Integrity
$h
[electronic resource] /
$c
by Yan Lin.
250
$a
1st ed. 2021.
264
1
$a
Cham :
$b
Springer International Publishing :
$b
Imprint: Springer,
$c
2021.
300
$a
XIII, 95 p. 23 illus.
$b
online resource.
336
$a
text
$b
txt
$2
rdacontent
337
$a
computer
$b
c
$2
rdamedia
338
$a
online resource
$b
cr
$2
rdacarrier
347
$a
text file
$b
PDF
$2
rda
490
1
$a
Information Security and Cryptography,
$x
2197-845X
505
0
$a
Introduction -- Literature Review -- When Function Signature Recovery Meets Compiler Optimization -- Control-Flow Carrying Code -- Control-Flow Integrity Enforcement with Dynamic Code Optimization -- Conclusion -- Bibliography.
520
$a
Control-Flow Integrity (CFI) is an attractive security property with which most injected and code-reuse attacks can be defeated, including advanced attacking techniques like return-oriented programming. CFI extracts a control-flow graph (CFG) for a given program, with checks inserted before indirect branch instructions. Before executed during runtime, the checks consult the CFG to ensure that the indirect branch is allowed to reach the intended target. Hence, any sort of control-flow hijacking can be prevented. This concise volume proposes novel solutions to handle the fundamental components of CFI enforcement: accurately recovering the policy (CFG); embedding the CFI policy securely; and efficiently enforcing the CFI policy. Addressing the first component, the book systematically studies two methods that recover CFI policy based on function signature matching at the binary level, then offers a unique rule- and heuristic-based mechanism to more accurately recover function signature. To embed CFI policy securely, the book advocates a new platform that encodes the policy into the machine instructions directly without relying on consulting any read-only data structure. Finally, the work prescribes a mature dynamic-code-optimization platform called DynamoRIO to enforce the policy when needed. Key features: Provides deep understanding of Control-Flow Integrity Offers new insights on the relationship between function signature and compiler optimization Demonstrates how CFI can be more efficient than Data Execution Prevention This focused, distinctive volume will appeal to researchers, scientists, lecturers, as well as postgraduates with a background in binary analysis. Libraries, practitioners, and professionals will also benefit, depending on their missions and programs. Yan Lin is at the School of Computing and Information Systems, Singapore Management University. Her extensive foundational studies have focused on the area of cybersecurity, and her current research focuses on software security and system security. .
650
2 4
$a
Continuous Optimization.
$3
888956
650
2 4
$a
Programming Languages, Compilers, Interpreters.
$3
669782
650
2 4
$a
Programming Techniques.
$3
669781
650
2 4
$a
Data Structures and Information Theory.
$3
1211601
650
1 4
$a
Systems and Data Security.
$3
677062
650
0
$a
Mathematical optimization.
$3
527675
650
0
$a
Programming languages (Electronic computers).
$3
1127615
650
0
$a
Computer programming.
$3
527822
650
0
$a
Data structures (Computer science).
$3
680370
650
0
$a
Computer security.
$3
557122
710
2
$a
SpringerLink (Online service)
$3
593884
773
0
$t
Springer Nature eBook
776
0 8
$i
Printed edition:
$z
9783030731403
776
0 8
$i
Printed edition:
$z
9783030731427
830
0
$a
Information Security and Cryptography,
$x
1619-7100
$3
1263985
856
4 0
$u
https://doi.org/10.1007/978-3-030-73141-0
912
$a
ZDB-2-SCS
912
$a
ZDB-2-SXCS
950
$a
Computer Science (SpringerNature-11645)
950
$a
Computer Science (R0) (SpringerNature-43710)
筆 0 讀者評論
多媒體
評論
新增評論
分享你的心得
Export
取書館別
處理中
...
變更密碼[密碼必須為2種組合(英文和數字)及長度為10碼以上]
登入