The Continuing Arms Race: Code-Reuse Attacks and Defenses

The Continuing Arms Race Pub Date : 2018-03-23 DOI:10.1145/3129743

Per Larsen, A. Sadeghi

{"title":"The Continuing Arms Race: Code-Reuse Attacks and Defenses","authors":"Per Larsen, A. Sadeghi","doi":"10.1145/3129743","DOIUrl":null,"url":null,"abstract":"As human activities have moved to the digital domain, so have all the well-known malicious behaviors including fraud, theft, and other trickery. There is no silver bullet, and each security threat calls for a specific answer. One particular threat is that applications accept malformed inputs, and in many cases it is possible to craft inputs that let an intruder take full control over the target computer system. \n \nThe nature of systems programming languages lies at the heart of the problem. Rather than rewriting decades of well-tested functionality, this book examines ways to live with the (programming) sins of the past while shoring up security in the most efficient manner possible. We explore a range of different options, each making significant progress toward securing legacy programs from malicious inputs. \n \nThe solutions explored include enforcement-type defenses, which exclude certain program executions because they never arise during normal operation. Another strand explores the idea of presenting adversaries with a moving target that unpredictably changes its attack surface thanks to randomization. We also cover tandem execution ideas where the compromise of one executing clone causes it to diverge from another, thus revealing adversarial activities.","PeriodicalId":267501,"journal":{"name":"The Continuing Arms Race","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-03-23","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"11","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"The Continuing Arms Race","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3129743","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 11

Abstract

As human activities have moved to the digital domain, so have all the well-known malicious behaviors including fraud, theft, and other trickery. There is no silver bullet, and each security threat calls for a specific answer. One particular threat is that applications accept malformed inputs, and in many cases it is possible to craft inputs that let an intruder take full control over the target computer system. The nature of systems programming languages lies at the heart of the problem. Rather than rewriting decades of well-tested functionality, this book examines ways to live with the (programming) sins of the past while shoring up security in the most efficient manner possible. We explore a range of different options, each making significant progress toward securing legacy programs from malicious inputs. The solutions explored include enforcement-type defenses, which exclude certain program executions because they never arise during normal operation. Another strand explores the idea of presenting adversaries with a moving target that unpredictably changes its attack surface thanks to randomization. We also cover tandem execution ideas where the compromise of one executing clone causes it to diverge from another, thus revealing adversarial activities.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

持续的军备竞赛:代码重用攻击与防御

随着人类活动进入数字领域，所有众所周知的恶意行为，包括欺诈、盗窃和其他欺骗行为也都进入了数字领域。没有什么灵丹妙药，每个安全威胁都需要一个特定的解决方案。一个特别的威胁是应用程序接受格式不正确的输入，在许多情况下，有可能精心设计输入，使入侵者完全控制目标计算机系统。系统编程语言的本质是问题的核心。这本书没有重写几十年来经过良好测试的功能，而是探讨了在以最有效的方式支持安全性的同时，如何与过去的(编程)错误共存。我们探索了一系列不同的选项，每个选项都在保护遗留程序免受恶意输入方面取得了重大进展。所探索的解决方案包括强制类型的防御，它排除某些程序执行，因为它们在正常操作期间不会出现。另一条线索探讨了向对手呈现移动目标的想法，由于随机化，移动目标会不可预测地改变其攻击面。我们还介绍了串联执行思想，其中一个执行克隆的妥协导致它与另一个克隆分离，从而揭示对抗性活动。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助