Selective checking of shared library calls for security보안을 위한 선택적 공유 라이브러리 호출 검사
This paper presents a systematic solution to the persistent problem of return-into type attacks. A large class of security mechanisms has been defeated by those attacks. While some security mechanisms are concerned with preventing return-into type attacks, they, however, are not complete against return-into type attacks or occur the considerable performance decline. We describe the selective checking of shared library calls, called SCC. The SCC dynamically relocates a program’s Global Offset Table (GOT) and checks whether the accesses via Procedure Linkage Table (PLT) are legal. The SCC is implemented by modifying only the Linux dynamic loader, hence it is transparent to applications and easily deployable. In experiment results, we show that the SCC is effective in defeating against return-into type attacks and is the mechanism with the low start-up and runtime overhead.
- Advisors
- Park, Dae-Yeonresearcher; 박대연researcher
- Description
- 한국과학기술원 : 전기및전자공학전공,
- Publisher
- 한국과학기술원
- Issue Date
- 2005
- Identifier
- 243669/325007 / 020033066
- Language
- eng
- Description
학위논문(석사) - 한국과학기술원 : 전기및전자공학전공, 2005.2, [ v, 25 p. ]
- Keywords
software vulnerabilities; dynamic program loader; os security; Security attacks; kernel 2.6; 커널 2.6; 소프트웨어 취약성; 동적 프로그램 로더; 운영체제 보안; 보안 공격
- Appears in Collection
- EE-Theses_Master(석사논문)
- Files in This Item
- There are no files associated with this item.
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.