Create an Account
username: password:
 
  MemeStreams Logo

Avaya Labs Research - Projects: Libsafe

search

Acidus
Picture of Acidus
My Blog
My Profile
My Audience
My Sources
Send Me a Message

sponsored links

Acidus's topics
Arts
Business
Games
Health and Wellness
Home and Garden
Miscellaneous
Current Events
Recreation
Local Information
Science
Society
Sports
Technology

support us

Get MemeStreams Stuff!


 
Avaya Labs Research - Projects: Libsafe
Topic: Miscellaneous 11:10 pm EST, Jan  5, 2005

] Projects: Libsafe
]
] Protecting Critical Elements of Stacks
]
] The exploitation of buffer overflow and format string
] vulnerabilities in process stacks constitutes a
] significant portion of security attacks in recent years.
] We present a new method to detect and handle such
] attacks. In contrast to previous work, our method does
] not require any modification to the operating system and
] works with existing binary programs. Our method does not
] require access to the source code of defective programs,
] nor does it require recompilation or off-line processing
] of binaries. Furthermore, it can be implemented on a
] system-wide basis transparently. Our solution is based on
] a middleware software layer that intercepts all function
] calls made to library functions that are known to be
] vulnerable. A substitute version of the corresponding
] function implements the original functionality, but in a
] manner that ensures that any buffer overflows are
] contained within the current stack frame, thus,
] preventing attackers from 'smashing' (overwriting) the
] return address and hijacking the control flow of a
] running program. We have implemented our solution on
] Linux as a dynamically loadable library called libsafe.
] Libsafe has demonstrated its ability to detect and
] prevent several known attacks, but its real benefit, we
] believe, is its ability to prevent yet unknown attacks.
] Experiments indicate that the performance overhead of
] libsafe is negligible.

Avaya Labs Research - Projects: Libsafe



 
 
Powered By Industrial Memetics
RSS2.0