Transparent Runtime Randomization for Security

Transparent Runtime Randomization for Security (2003)

Cached

Download Links

[www.crhc.uiuc.edu]

Other Repositories/Bibliography

DBLP

by Jun Xu , Zbigniew Kalbarczyk , Ravishankar K. Iyer

Citations:

90 - 9 self

BibTeX

@INPROCEEDINGS{Xu03transparentruntime,
    author = {Jun Xu and Zbigniew Kalbarczyk and Ravishankar K. Iyer},
    title = {Transparent Runtime Randomization for Security},
    booktitle = {},
    year = {2003},
    pages = {260--269}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

A large class of security attacks exploit software implementation vulnerabilities such as unchecked buffers. This paper proposes Transparent Runtime Randomization (TRR), a generalized approach for protecting against a wide range of security attacks. TRR dynamically and randomly relocates a program’s stack, heap, shared libraries, and parts of its runtime control data structures inside the application memory address space. Making a program’s memory layout different each time it runs foils the attacker’s assumptions about the memory layout of the vulnera-ble program and makes the determination of critical address values difficult if not impossible. TRR is implemented by changing the Linux dynamic program loader, hence it is transparent to applications. We demonstrate that TRR is effective in defeating real security attacks, including malloc-based heap overflow, integer overflow, and double-free attacks, for which effective prevention mechanisms are yet to emerge. Furthermore, TRR incurs less than 9% program startup overhead and no runtime overhead. 1

Citations

407	Stackguard: Automatic adaptive detection and prevention of buffer-overflow attacks - Cowan, Pu, et al.
314	A first step towards automated detection of buffer overrun vulnerabilities - Wagner, Foster, et al. - 2000
158	Statically detecting likely buffer overflow vulnerabilities - Larochelle, Evans - 2001
156	Transparent run-time defense against stack-smashing attacks - Baratloo, Singh, et al. - 2000
146	Static detection of dynamic memory errors - Evans - 1996
142	Smashing the stack for fun and profit - One - 1996
142	Optimistic incremental specialization: streamlining a commercial operating system - Pu - 1995
140	Building diverse computer systems - Forrest, Somayaji, et al. - 1997
120	FormatGuard: Automatic protection from printf format string vulnerabilities - Cowan - 2001
68	a C program checker - Lint - 1978
40	Defeating Solar Designer’s Non-executable Stack Patch. http://insecure.org/sploits/ non-executable.stack.problems.html - Wojtczuk - 1998
29	Diversity against accidental and deliberate faults - Deswarte, Kanoun, et al. - 1998
26	The methodology of n-version programming - Avizienis - 1995
24	Once upon a free - Anonymous
18	A specialization toolkit to increase the diversity of operating systems - Pu, Black, et al. - 1996
10	Linux kernel patch from the Openwall project. http://www.openwall.com/linux - Project
4	Netcraft Web Server Survey. http://www.netcraft.com/ survey - NETCRAFT
2	Advisory CA-2000-13 Two Input Validation Problems - CERT - 2000
2	Homepage of The PaX Team. http://pageexec.virtualave.net - Team
2	Sendmail home - Consortium - 2004
1	Diversity as a defense strategy in information - Bain, Faatz, et al. - 2001
1	N-version programming for stack overflow detection - Chen, Zymla, et al. - 2000
1	Vudo - An object supersitiously believed to embody magical powers - Kaempf - 2001
1	Executable and Linkable Format (ELF) Version 1.1. Tool Interface Standards - Labs