基于动态二进制探测框架的缓冲区溢出检测分析-analysis of buffer overflow detection based on dynamic binary detection framework.docxVIP
- 3
- 0
- 约6.57万字
- 约 71页
- 2018-05-18 发布于上海
- 举报
基于动态二进制探测框架的缓冲区溢出检测分析-analysis of buffer overflow detection based on dynamic binary detection framework
上海交通大学硕士学位论文
摘 要
- II -
判定三个步骤。它能够检测出各种类型的缓冲区溢出攻击,具有普适
性。
本研究以动态二进制探测方法和污点分析方法为指导,在动态二 进制翻译系统 Crossbit 基础上构建了动态二进制探测框架 CrossIF, 并在此基础上实现了防御缓冲 区溢出的动态二进制探测工 具 BufferSafeTy。通过实例验证 BufferSafeTy 的功能,可以得出这样 的结论:综合动态二进制探测方法和污点分析方法的缓冲区溢出防御 工具,能够在只有二进制代码的情况下,防御各种类型的缓冲区溢出 的攻击行为,弥补了现有缓冲区溢出防御工具的不足。
关键字:缓冲区溢出检测,动态二进制探测,污点分析,CrossIF, BufferSafeTy
上海交通大学硕士学位论文
ABSTRACT
- III -
BUFFER OVERFLOW DETECTION BASED ON DYNAMIC BINARY
INSTRUMENTATION FRAMEWORK
ABSTRACT
Buffer overflow is the most common bugs in program. The number of buffer overflow attacks was increasing during the last two decades, bringing users great loss. Accordingly, the research on buffer overflow detection and defense of buffer overflow attack are more and more popular. There are lots of buffer overflow detection tools at present. Because of the detection method, almost of these tools have two limitations. First, they need the source code. And second, they can only detect specific buffer overflow bugs. This paper presents a method combining dynamic binary instrumentation and taint analysis to defense buffer overflow attacks.
Dynamic binary instrumentation is a method which adds instrumentation code to original binary code to collect program behavior information. It doesn’t need the existence of source code and is compatible with commercial software and legacy code. For better efficiency, most dynamic binary instrumentation tools are developed
- PAGE 7 -
based on dynamic binary instrumentation framework.
Taint analysis is a method marking the data in program as two categories, which are tainted and clean. It also manages the taint attribute during program execution. Once the taint data are used in illegal ways it asserts a potential attack. It can detect many kinds of buffer overflow attacks.
This paper describes a dynamic binary instrumentation framework, CrossIF, which build on Crossbit, and a dynamic binary instrumentation tool, BufferSafeTy, for detecting buffer overflow attacks. BufferSafeTy was de
您可能关注的文档
- 基于地球物理特征的岩相古地理研究——以冀中坳陷中 新元古界为例-study on lithofacies paleogeography based on geophysical characteristics a case study of the meso - neoproterozoic in jizhong depression.docx
- 基于地域特征的关中地区农业观光园景观营造策略分析-analysis of landscape construction strategies of agricultural sightseeing parks in guanzhong region based on regional characteristics.docx
- 基于地域特色的“草原城镇”城市色彩研究-study on urban color of.docx
- 基于地域文化的商业步行街设计分析——以重庆涪陵区通江长廊设计为例-design and analysis of commercial pedestrian street based on regional culture - a case study of tongjiang promenade design in fuling district, chongqing.docx
- 基于地域特色的山地居住小区外部空间设计分析——以重庆为例-analysis of external space design of mountainous residential areas based on regional characteristics - a case study of chongqing.docx
- 基于地域文化的关中小城市市民中心空间环境设计研究——以蒲城县市民中心规划设计为例-study on spatial environment design of citizen center in small and medium-sized cities based on regional culture - taking the planning and design of pucheng county citizen center as an exampl.docx
- 基于地域性的大学校园空间营造——以南京旅游职业学院为例-construction of campus space based on regionality - taking nanjing tourism vocational college as an example.docx
- 基于地域文化的城市识别系统规划研究——以大庆市为例-study on urban identification system planning based on regional culture - a case study of daqing city.docx
- 基于地域文化视角的城市桥梁景观设计研究——以重庆为例-study on urban bridge landscape design from the perspective of regional culture - a case study of chongqing.docx
- 基于地域化理念的生态建筑设计研究——以织金三甲新区行政文化中心方案设计为例-study on the design of ecological architecture based on the concept of regionalization - taking the scheme design of administrative and cultural center in zhijin 3a new district as an example.docx
- 小区绿化施工协议书.docx
- 墙面施工协议书.docx
- 1 古诗二首(课件)--2025-2026学年统编版语文二年级下册.pptx
- (2026春新版)部编版八年级道德与法治下册《3.1《公民基本权利》PPT课件.pptx
- (2026春新版)部编版八年级道德与法治下册《4.3《依法履行义务》PPT课件.pptx
- (2026春新版)部编版八年级道德与法治下册《6.2《按劳分配为主体、多种分配方式并存》PPT课件.pptx
- (2026春新版)部编版八年级道德与法治下册《6.1《公有制为主体、多种所有制经济共同发展》PPT课件.pptx
- 初三教学管理交流发言稿.docx
- 小学生课外阅读总结.docx
- 餐饮门店夜经济运营的社会责任报告(夜间贡献)撰写流程试题库及答案.doc
原创力文档

文档评论(0)