Monica Chew, Dawn Song  Home/Search
Context Related
| berkeley.edu/~mmc/papers/tr.ps Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: berkeley.edu/~mmc/ (more) Homepages: M.Chew |
Rate this article:      (best)Comment on this article |
Abstract: We propose three methods for mitigating buffer overflows by using operating system randomization: randomization of system call mappings, randomization of global library entry points, and randomization of stack placement. These mechanisms are light weight. They increase the heterogeneity of systems and make it more difficult for attackers to exploit buffer overow vunerabilities. We also present a mechanism, timed capabilities, for more secure resource management. (Update)
Cited by: More
Taxonomy and Effectiveness of Worm Defense Strategies - Brumley, Liu, Poosankam, Song (2005) (Correct)
Context Sensitive Anomaly Monitoring of Process Control Flow.. - Xu, Du, Chapin (2004) (Correct)
SELF: a Transparent Security Extension for ELF Binaries - DuVarney, Bhatkar.. (2003) (Correct)
Active bibliography (related documents): More All
0.0: Countering Network Worms through Automatic Patch Generation - Sidiroglou, Keromytis (2003) (Correct)
0.0: Large Scale Malicious Code: A Research Agenda - Weaver, Paxson, Staniford.. (2003) (Correct)
0.0: Survivability From a Sow's Ear: The Retrofit Security Requirement - Cowan, Pu (Correct)
Similar documents based on text: More All
0.2: Libsafe: Protecting Critical Elements of Stacks - Baratloo, Tsai, Singh (1999) (Correct)
0.2: Cyclone: A safe dialect of C - Jim, Morrisett, Grossman, Hicks.. (2001) (Correct)
0.2: GEM: Graph EMbedding for Routing and Data-Centric Storage in.. - Newsome, Song (2003) (Correct)
Related documents from co-citation: More All
6: Address Obfuscation: an Efficient Approach to Combat a Broad Range of Memory Err.. (context) - Bhatkar, DuVarney et al. - 2003
5: Building diverse computer systems - Forrest, Somayaji et al. - 1997
4: Countering Code-Injection Attacks With Instruction-Set Randomization (context) - Kc, Keromytis et al. - 2003
BibTeX entry: (Update)
M. Chew and D. Song. Mitigating Buffer Overflows by Operating System Randomization. Technical Report CMU-CS-02-197, Department of Computer Science, Carnegie Mellon University, Dec. 2002. http://citeseer.ist.psu.edu/chew02mitigating.html More
@techreport{ chew02mitigating,
author = "M. Chew and D. Song",
title = "Mitigating Buffer Overflows by Operating System Randomization",
number = "CMU-CS-02-197",
institution = "Department of Computer Science, Carnegie Mellon University",
month = dec,
year = "2002",
url = "citeseer.ist.psu.edu/chew02mitigating.html" }
Citations (may not include all citations):141 Stackguard: Automatic adaptive detection and prevention of b.. - Cowan, Pu et al. - 1998
45 Building diverse computer systems - Forrest, Somayaji et al. - 1997
1 An exploitable heap over ow in windows 95/98 telnet (context) - Kothe - 1999
1 Feb and Jun (context) - authors, http et al. - 1999
1 a re-examination of the reliability of unix utilities and se.. (context) - Miller, revisited - 1995
1 chapter Basic Principles of Information Protection (context) - of, Computer - 1975
http://www.angel
The graph only includes citing articles where the year of publication is known.
Documents on the same site (http://www.cs.berkeley.edu/~mmc/):
BaffleText: a Human Interactive Proof - Chew, Baird (2003) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC