A theory of secure control flow
作者: Martín Abadi , Mihai Budiu , Úlfar Erlingsson , Jay Ligatti
DOI: 10.1007/11576280_9
关键词:
摘要: Control-Flow Integrity (CFI) means that the execution of a program dynamically follows only certain paths, in accordance with static policy. CFI can prevent attacks that, by exploiting buffer overflows and other vulnerabilities, attempt to control behavior. This paper develops basic theory underlies two practical techniques for enforcement, precise formulations hypotheses guarantees.
springer.com
core.ac.uk
ucsc.edu 
budiu.info 参考文章(20)
Ulfar Erlingsson, Jay Ligatti, Martn Abadi, Mihai Budiu, Further formal material on CFI and SMAC ,(2005)
Monica S. Lam, Olatunji Ruwase, A practical dynamic buffer overflow detector network and distributed system security symposium. pp. 159- 169 ,(2004)
Mariam Kamkar, John Wilander, A Comparison of Publicly Available Tools for Dynamic Buffer Overflow Prevention network and distributed system security symposium. pp. 149- ,(2003)
Perry Wagle, Jonathan Walpole, Calton Pu, Steve Beattie, Aaron Grier, Crispin Cowan, Heather Hintony, Qian Zhang, Peat Bakke, Dave Maier, StackGuard: automatic adaptive detection and prevention of buffer-overflow attacks usenix security symposium. pp. 5- 5 ,(1998)
J. Pincus, B. Baker, Beyond stack smashing: recent advances in exploiting buffer overruns ieee symposium on security and privacy. ,vol. 2, pp. 20- 27 ,(2004) , 10.1109/MSP.2004.36
George C. Necula, Proof-carrying code symposium on principles of programming languages. pp. 106- 119 ,(1997) , 10.1145/263699.263712
Amitabh Srivastava, Alan Eustace, ATOM: a system for building customized program analysis tools programming language design and implementation. ,vol. 39, pp. 196- 205 ,(1994) , 10.1145/178243.178260
Jay Ligatti, Lujo Bauer, David Walker, Edit automata: enforcement mechanisms for run-time security policies International Journal of Information Security. ,vol. 4, pp. 2- 16 ,(2005) , 10.1007/S10207-004-0046-8
Greg Morrisett, David Walker, Karl Crary, Neal Glew, From system F to typed assembly language ACM Transactions on Programming Languages and Systems. ,vol. 21, pp. 527- 568 ,(1999) , 10.1145/319301.319345
Robert Wahbe, Steven Lucco, Thomas E. Anderson, Susan L. Graham, Efficient software-based fault isolation symposium on operating systems principles. ,vol. 27, pp. 203- 216 ,(1993) , 10.1145/168619.168635