국립중앙도서관 "우편 복사 서비스"로 연결 됩니다.
This paper presents a user transparent protection against binary code injection attacks. Code injection is a major vehicle for carrying out software attacks. Using the TLB (Translation Lookahead Buffer) that is usually split between data (D-TLB) and i...
다국어 입력
あ
ぁ
か
が
さ
ざ
た
だ
な
は
ば
ぱ
ま
や
ゃ
ら
わ
ゎ
ん
い
ぃ
き
ぎ
し
じ
ち
ぢ
に
ひ
び
ぴ
み
り
う
ぅ
く
ぐ
す
ず
つ
づ
っ
ぬ
ふ
ぶ
ぷ
む
ゆ
ゅ
る
え
ぇ
け
げ
せ
ぜ
て
で
ね
へ
べ
ぺ
め
れ
お
ぉ
こ
ご
そ
ぞ
と
ど
の
ほ
ぼ
ぽ
も
よ
ょ
ろ
を
ア
ァ
カ
サ
ザ
タ
ダ
ナ
ハ
バ
パ
マ
ヤ
ャ
ラ
ワ
ヮ
ン
イ
ィ
キ
ギ
シ
ジ
チ
ヂ
ニ
ヒ
ビ
ピ
ミ
リ
ウ
ゥ
ク
グ
ス
ズ
ツ
ヅ
ッ
ヌ
フ
ブ
プ
ム
ユ
ュ
ル
エ
ェ
ケ
ゲ
セ
ゼ
テ
デ
ヘ
ベ
ペ
メ
レ
オ
ォ
コ
ゴ
ソ
ゾ
ト
ド
ノ
ホ
ボ
ポ
モ
ヨ
ョ
ロ
ヲ
―
http://chineseinput.net/에서 pinyin(병음)방식으로 중국어를 변환할 수 있습니다.
변환된 중국어를 복사하여 사용하시면 됩니다.
예시)
- 中文 을 입력하시려면 zhongwen을 입력하시고 space를누르시면됩니다.
- 北京 을 입력하시려면 beijing을 입력하시고 space를 누르시면 됩니다.
А
Б
В
Г
Д
Е
Ё
Ж
З
И
Й
К
Л
М
Н
О
П
Р
С
Т
У
Ф
Х
Ц
Ч
Ш
Щ
Ъ
Ы
Ь
Э
Ю
Я
а
б
в
г
д
е
ё
ж
з
и
й
к
л
м
н
о
п
р
с
т
у
ф
х
ц
ч
ш
щ
ъ
ы
ь
э
ю
я
′
″
℃
Å
¢
£
¥
¤
℉
‰
$
%
F
₩
㎕
㎖
㎗
ℓ
㎘
㏄
㎣
㎤
㎥
㎦
㎙
㎚
㎛
㎜
㎝
㎞
㎟
㎠
㎡
㎢
㏊
㎍
㎎
㎏
㏏
㎈
㎉
㏈
㎧
㎨
㎰
㎱
㎲
㎳
㎴
㎵
㎶
㎷
㎸
㎹
㎀
㎁
㎂
㎃
㎄
㎺
㎻
㎽
㎾
㎿
㎐
㎑
㎒
㎓
㎔
Ω
㏀
㏁
㎊
㎋
㎌
㏖
㏅
㎭
㎮
㎯
㏛
㎩
㎪
㎫
㎬
㏝
㏐
㏓
㏃
㏉
㏜
㏆
RISS 인기검색어
부가정보
다국어 초록 (Multilingual Abstract)
This paper presents a user transparent protection against binary code injection attacks. Code injection is a major vehicle for carrying out software attacks. Using the TLB (Translation Lookahead Buffer) that is usually split between data (D-TLB) and instructions (I-TLB) as found in modern processors, a simple protection can be developed based on an observation that activating an injected code causes I-TLB miss for a memory page modified by code injection. If program execution from a modified page is disallowed, injected code cannot start. However, such protection is of limited use unless the protection can handle legitimate runtime generated codes, which would trigger false-alarms due to the same translation trace as that of code injection attacks. Modern systems often utilize runtime-generated code for extensibility and flexibility. In order to prevent such false-alarms, the presented protection identifies the source of the code injected – from external I/O or not and refers to the privilege level of the process at runtime. This paper introduces a scheme that determines whether the code injected is legitimate. By identifying memory pages modified by external I/O operations, the scheme provides software transparent data execution prevention in processors with and without NX-bit support. The experimental results show that the proposed protection can detect all the code injection attacks tested on the two Linux operating systems out of the box and that the performance impact incurred by this protection is insignificant.
This paper presents a user transparent protection against binary code injection attacks. Code injection is a major vehicle for carrying out software attacks. Using the TLB (Translation Lookahead Buffer) that is usually split between data (D-TLB) and instructions (I-TLB) as found in modern processors, a simple protection can be developed based on an observation that activating an injected code causes I-TLB miss for a memory page modified by code injection. If program execution from a modified page is disallowed, injected code cannot start. However, such protection is of limited use unless the protection can handle legitimate runtime generated codes, which would trigger false-alarms due to the same translation trace as that of code injection attacks. Modern systems often utilize runtime-generated code for extensibility and flexibility. In order to prevent such false-alarms, the presented protection identifies the source of the code injected – from external I/O or not and refers to the privilege level of the process at runtime. This paper introduces a scheme that determines whether the code injected is legitimate. By identifying memory pages modified by external I/O operations, the scheme provides software transparent data execution prevention in processors with and without NX-bit support. The experimental results show that the proposed protection can detect all the code injection attacks tested on the two Linux operating systems out of the box and that the performance impact incurred by this protection is insignificant.
목차 (Table of Contents)
- 1 Introduction 1
- 2 Background 5
- 2.1 Code Injection Attack 5
- 2.2 Related Works 6
- 2.3 Address Translation and TLB 13
- 1 Introduction 1
- 2 Background 5
- 2.1 Code Injection Attack 5
- 2.2 Related Works 6
- 2.3 Address Translation and TLB 13
- 3 TLB Monitor 18
- 3.1 Basic Idea 18
- 3.2 Legitimate Code Injection 23
- 3.3 Missing TLB entries 26
- 3.4 With NX-bit support 28
- 4 Evaluation 31
- 4.1 Evaluation of the TLB-Mon's the Efficacy 31
- 4.1.1 Simulation Environment 32
- 4.1.2 Simulation Results 34
- 4.2 Evaluation of the TLB-Mon's the Performance Impact 37
- 4.2.1 Performance Factors 37
- 4.2.2 Performance Impact 39
- 5 Discussion 42
- 6 Conclusion 47
- A Testing and Evaluation of TLB-Mon with bochs 50
분석정보
이 자료와 함께 이용한 RISS 자료
나만을 위한 추천자료
