loading
Papers

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Benjamin Teissier and Stefan D. Bruda

Affiliation: Bishop's University, Canada

ISBN: 978-989-758-036-9

Keyword(s): Software and Information Security, Buffer Overflow, Stack Overflow, Privilege Escalation, Kernel, Linux.

Related Ontology Subjects/Areas/Topics: Software and Information Security ; Software Engineering ; Software Engineering Methods and Techniques ; Software Testing and Maintenance

Abstract: We contribute to the investigation of buffer overflows by finding a more accurate way of preventing their exploitation. We work at the highest privilege levels and in the safest part of a GNU/Linux system, namely the kernel. We provide a system that allows the kernel to detect overflows and prevent their exploitation. The kernel injects at launch time some (minimal) code into the binary being run, and subsequently uses this code to monitor the execution of that program with respect to its stack use, thus detecting stack overflows. The system stands alone in the sense that it does not need any hardware support; it also works on any program, no matter how that program was conceived or compiled. Beside the theoretical concepts we also present a proof-of-concept patch to the kernel supporting our idea. Overall we effectively show that guarding against buffer overflows at run time is not only possible but also feasible. In addition we take the first steps toward implementing such a defense.

PDF ImageFull Text

Download
CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 35.172.195.49

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Teissier, B. and Bruda, S. (2014). Toward Preventing Stack Overflow Using Kernel Properties.In Proceedings of the 9th International Conference on Software Engineering and Applications - Volume 1: ICSOFT-EA, (ICSOFT 2014) ISBN 978-989-758-036-9, pages 369-376. DOI: 10.5220/0005097803690376

@conference{icsoft-ea14,
author={Benjamin Teissier. and Stefan D. Bruda.},
title={Toward Preventing Stack Overflow Using Kernel Properties},
booktitle={Proceedings of the 9th International Conference on Software Engineering and Applications - Volume 1: ICSOFT-EA, (ICSOFT 2014)},
year={2014},
pages={369-376},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005097803690376},
isbn={978-989-758-036-9},
}

TY - CONF

JO - Proceedings of the 9th International Conference on Software Engineering and Applications - Volume 1: ICSOFT-EA, (ICSOFT 2014)
TI - Toward Preventing Stack Overflow Using Kernel Properties
SN - 978-989-758-036-9
AU - Teissier, B.
AU - Bruda, S.
PY - 2014
SP - 369
EP - 376
DO - 10.5220/0005097803690376

Login or register to post comments.

Comments on this Paper: Be the first to review this paper.