A Taxonomy of Buffer Overflow Characteristics

Bishop, Matt; Engle, Sophie; Howard, Damien; Whalen, Sean

doi:10.1109/tdsc.2012.10

Cited by 26 publications

(25 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…FFRR technique can be used as a defense against all 18 attack techniques listed in [3]. In future, we will implement our technique in GCC Compiler and will do benchmarking for standard Linux programs.…”

Section: Discussionmentioning

confidence: 99%

See 1 more Smart Citation

Protection against Buffer Overflow Attacks through Runtime Memory Layout Randomization

Kumar

Kisore

2014

2014 International Conference on Information Technology

View full text Add to dashboard Cite

To date a number of comprehensive techniques have been proposed to defend against buffer over attacks. In spite of continuing research in this area, security vulnerabilities in software continue to be discovered and exploited. This is because the existing protection techniques suffer from one or more of the following problems: high run time overheads (often exceeding 100%), incompatibility with legacy C and C++ code, not sufficiently fine grained randomization of memory layout and the inability to perform randomization at run time rather than compile time or link time or load time. While security through diversity is a promising technique to defend against large scale cyber attacks, existing techniques are susceptible to information leakage and brute-force attacks, in addition to the short comings indicated above. To overcome the above indicated drawbacks, in this paper we propose Function Frame Run time Randomization (FFRR) technique. FFRR offers memory layout randomization at run time and performs randomization at the level of individual variables on the stack.

show abstract

Section: Discussionmentioning

confidence: 99%

“…2) Should be holistic in nature and should be able to defend against all the 18 predictions indicated in [3]. 3) In accordance with kerchoff's first principle of cryptography the proposed mechanism should be key centric rather than algorithm centric.…”

Section: Introductionmentioning

confidence: 99%

Protection against Buffer Overflow Attacks through Runtime Memory Layout Randomization

Kumar

Kisore

2014

2014 International Conference on Information Technology

View full text Add to dashboard Cite

show abstract

“…Para proteger a IoT são necessárias muitas camadas de segurança incluindo uma que proteja a IoT de exploração de falhas de código via manipulação das entradas. Entre exemplos de ataques desse tipo em sistemas tradicionais podemos citar o Estouro de Arranjo (BoF -Buffer Overflow) [11], Estouro de Inteiro (IoF -Integer Overflow) [12] e a Injeção de SQL (SQL Injection) [3]. Acreditamos que ataques desse tipo serão frequentes em sistemas da IoT também.…”

Section: Introductionunclassified

Defending Internet of Things against Exploits

Teixeira¹,

Vieira²,

Fonseca³

et al. 2015

IEEE Latin Am. Trans.

View full text Add to dashboard Cite

The Internet of Things (IoT) demands tailor-made security solutions. Today, there are a number of proposals able to meet IoT's demands in the context of attacks from outsiders. In the context of insiders, however, this does not hold true. Existing solutions to deal with this class of attacks not always take into consideration the IoT's idiosyncrasies and, therefore, they do not produce the best results. This work aims at coming up with tailormade security schemes for thwarting attacks from insiders in the context of IoT systems. Our solution makes use of a pioneering solution to pinpoint vulnerabilities: we crosscheck data from communicating nodes. It provides the same guarantees as traditional security mechanisms, but it is about 83% more efficient, according to the experiments that this article describes.

show abstract

“…A buffer overflow occurs when a program writes data to a buffer then overruns the buffer's boundary and overwrites adjacent memory [4] [5]. According to the overflowed buffer's memory region, there are two types of buffer overflows: stack overflows and heap overflows.…”

Section: Introductionmentioning

confidence: 99%

“…Static analysis tools usually have high false alarm rates; dynamic buffer overflow detectors can provide precise detection and generally there can be no false alarms. However few dynamic heap buffer overflow detectors are widely deployed due to one or more of the following reasons: (1) many countermeasures result in high performance overhead [14] [25]; (4) some require special platforms that are rarely available [18] [20].…”

Section: Introductionmentioning

confidence: 99%

HeapDefender: A Mechanism of Defending Embedded Systems against Heap Overflow via Hardware

Liu

Zhao

2012

2012 9th International Conference on Ubiquitous Intelligence and Computing and 9th International Conference on Autonomic and Tr

View full text Add to dashboard Cite

Buffer overflow attacks have been causing serious security problems for decades. While numerous approaches have been proposed to prevent stack overflows, heap overflows remain a security threat and a frequent source of bugs. Embedded systems can be easily attacked by the heap overflow attacks. In this paper, based on analyzing the security of an embedded processor at instruction level, we propose a hardware defense mechanism, HeapDefender, which aims to detect heap buffer overflow attacks. HeapDefender, a module of hardware located the inside of the embedded processor, neither modifies the program nor destroys the pipeline integrity. The instructions parsed in parallel within the HeapDefender are synchronized with the CPU pipeline which makes the HeapDefender have little performance overhead. As demonstrated in an FPGA (Field Programmable Gate Array) prototyping, the experimental results show that HeapDefender can effectively detect heap buffer overflow attacks with around 15% hardware cost overhead and only 0.1% performance penalty.

show abstract

A Taxonomy of Buffer Overflow Characteristics

Cited by 26 publications

References 15 publications

Protection against Buffer Overflow Attacks through Runtime Memory Layout Randomization

Protection against Buffer Overflow Attacks through Runtime Memory Layout Randomization

Defending Internet of Things against Exploits

HeapDefender: A Mechanism of Defending Embedded Systems against Heap Overflow via Hardware

Contact Info

Product

Resources

About