Hiroaki Etoh. GCC extension for protecting applications from stack-smashing attacks. http://www.trl.ibm.com/projects/security/ssp/ , June 2000.  Home/Search   Document Not in Database   Summary   Related Articles   Check

....address Figure 3. The UNIX stack frame. 2.3 Attack Targets As stated above the target for a successful change of control flow is a code pointer. There are three types of code pointers to attack [11] But Hiroaki Etoh and Kunikazu Yoda propose using the old base pointer as an attack target [15]. We have implemented their proposed attack form and proven that the old base pointer is just as dangerous a target as the return address (see section 2.4 and 4) So we have four attack targets: 1. The return address, allocated on the stack. 2. The old base pointer, allocated on the stack. 3. ....

....to use dynamically allocated function pointers. Stack Shield is available for download at http: www.angelfire.com sk stackshield 3. 5 ProPolice Hiroaki Etoh and Kunikazu Yoda from IBM Research in Tokyo have implemented the perhaps most sophisticated compiler protection called ProPolice [15]. 3.5.1 The ProPolice Concept Etoh s and Yoda s GCC patch ProPolice borrows the main idea from StackGuard (see section 3.3) they use canary values to detect attacks on the stack. The novelty is the protection of stack allocated variables by rearranging the local variables so that char buffers ....

H. Etoh. GCC extension for protecting applications from stack-smashing attacks. http://www.trl.ibm. com/projects/security/ssp/, June 2000.

....program stack [18] The only exploit detection StackShield performs is checking the segments function pointers point to. 7. 3 ProPolice Hiroaki Etoh s ProPolice is a modification to the GNU C compiler that places a random canary between any stack allocated character bu#ers and the return pointer [5]. It then validates that the canary has not been dirtied by an overflowed bu#er before the function returns. ProPolice can also reorder local variables to protect local pointers from being overwritten in a bu#er overflow. 7.4 LibSafe LibSafe is a library modification to Linux that safely wraps ....

Hiroaki Etoh. "GCC extension for protecting applications from stack-smashing attacks." http://www.trl.ibm.co.jp/projects/security/ssp

No context found.

Hiroaki Etoh. GCC extension for protecting applications from stack-smashing attacks. http://www.trl.ibm.com/projects/security/ssp/ , June 2000.

No context found.

J. Etoh. GCC extension for protecting applications from stack-smashing attacks. http://www.trl.ibm.com/ projects/security/ssp/, June 2000.

No context found.

Etoh, J.: GCC extension for protecting applications from stack-smashing attacks. http://www.trl.ibm.com/projects/security/ssp/ (2000)

No context found.

J. Etoh. GCC extension for protecting applications from stack-smashing attacks. http://www.trl.ibm.com/ projects/security/ssp/, June 2000.

No context found.

J. Etoh. GCC extension for protecting applications from stack-smashing attacks. http://www.trl.ibm.com/ projects/security/ssp/, June 2000.

No context found.

J. Etoh. GCC extension for protecting applications from stack-smashing attacks. http://www.trl.ibm.com/ projects/security/ssp/, June 2000.

No context found.

J. Etoh. GCC extension for protecting applications from stack-smashing attacks. http://www.trl.ibm.com/ projects/security/ssp/, June 2000.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC