Building Secure Defenses Against Code-Reuse Attacks
Nonfiction, Computers, Networking & Communications, Computer Security, Operating Systems, Application Software
| Author: | Lucas Davi, Ahmad-Reza Sadeghi | ISBN: | 9783319255460 |
| Publisher: | Springer International Publishing | Publication: | December 7, 2015 |
| Imprint: | Springer | Language: | English |
| Author: | Lucas Davi, Ahmad-Reza Sadeghi |
| ISBN: | 9783319255460 |
| Publisher: | Springer International Publishing |
| Publication: | December 7, 2015 |
| Imprint: | Springer |
| Language: | English |
This book provides an in-depth look at return-oriented programming attacks. It explores several conventional return-oriented programming attacks and analyzes the effectiveness of defense techniques including address space layout randomization (ASLR) and the control-flow restrictions implemented in security watchdogs such as Microsoft EMET.
Chapters also explain the principle of control-flow integrity (CFI), highlight the benefits of CFI and discuss its current weaknesses. Several improved and sophisticated return-oriented programming attack techniques such as just-in-time return-oriented programming are presented.
Building Secure Defenses against Code-Reuse Attacks is an excellent reference tool for researchers, programmers and professionals working in the security field. It provides advanced-level students studying computer science with a comprehensive overview and clear understanding of important runtime attacks.
This book provides an in-depth look at return-oriented programming attacks. It explores several conventional return-oriented programming attacks and analyzes the effectiveness of defense techniques including address space layout randomization (ASLR) and the control-flow restrictions implemented in security watchdogs such as Microsoft EMET.
Chapters also explain the principle of control-flow integrity (CFI), highlight the benefits of CFI and discuss its current weaknesses. Several improved and sophisticated return-oriented programming attack techniques such as just-in-time return-oriented programming are presented.
Building Secure Defenses against Code-Reuse Attacks is an excellent reference tool for researchers, programmers and professionals working in the security field. It provides advanced-level students studying computer science with a comprehensive overview and clear understanding of important runtime attacks.
