Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Software security enhancing method based on binary rewrite and dynamic randomization

A dynamic randomization and software security technology, applied in computer security devices, instruments, electronic digital data processing, etc., can solve the problems of inability to defend against information leakage attacks, coarse randomization granularity, etc., to reduce the probability of successful attacks and randomize granularity. Refinement, randomization effect of entropy increase

Inactive Publication Date: 2016-02-17
NANJING UNIV
View PDF2 Cites 10 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0009] On the basis of the existing work, the purpose of the present invention is to: solve the problems in the existing address space randomization mechanism, such as coarse randomization granularity, randomization only in the program loading stage, and inability to defend against information leakage attacks, so as to effectively improve the performance of the computer system. and software security and reliability

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Software security enhancing method based on binary rewrite and dynamic randomization
  • Software security enhancing method based on binary rewrite and dynamic randomization
  • Software security enhancing method based on binary rewrite and dynamic randomization

Examples

Experimental program
Comparison scheme
Effect test

specific Embodiment

[0069] Further description will be given below in conjunction with relevant explanatory diagrams and specific embodiments of the present invention: the realization of the software security enhancement method based on binary rewriting and dynamic randomization on the Intel-x86 architecture and Linux system.

[0070] Step 1: Refactor the ELF binary file that requires dynamic randomization into a format suitable for running under the dynamic randomization mechanism by using existing mature binary rewriting tools. In the present invention, the binary rewriting operation mainly relates to the jump instruction and the end-of-page instruction in the code segment of the ELF file; The transfer instruction is replaced by a specific system call instruction sequence, and the corresponding system call instruction sequence is inserted before the end-of-page instruction. Among them, a feasible rewriting rule is as follows (but not limited to this rewriting rule):

[0071]

[0072]

[...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a software security enhancing method based on binary rewrite and dynamic randomization, comprising the following modules: 1) static binary rewrite; 2) double-level mapping, namely from a process logical page to a logical page and from the logical page to a physical page; 3) a dynamic randomization mechanism periodically randomizes a process address space by taking pages as granularities; 4) a logical address mapping redirecting mechanism provides the logical address mapping a redirecting service for a process. According to the software security enhancing method based on the binary rewrite and the dynamic randomization, the randomization entropy of the process address space is remarkably improved through the fine granularity dynamic cyclical randomization, the successful probability of attacking of an attacker is lowered, and the security of the a computer system and software is improved.

Description

technical field [0001] The invention belongs to the field of computer technology, especially the field of system and software safety. The invention provides a software security enhancement method combined with binary rewriting and dynamic randomization, which is used to improve the security of the operating system and application software. Background technique [0002] Computer technology has played a pivotal role in production and life, and it is becoming more and more important to ensure the security of computer systems and software. In the arms race of computer system and software security, the attacks that have appeared successively include: Buffer Overflow Attack, Code Injection Attack, Code Reuse Attack, Information Leakage Attack, etc.; Correspondingly, related defense mechanisms include: No-eXecute (NX), Address Space Layout Randomization (ASLR), etc. [0003] Buffer overflow attack: a widely used and seriously harmful attack method has become an important problem ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F21/56
CPCG06F21/566G06F2221/033
Inventor 侯宇李永锋平丹陈平茅兵
Owner NANJING UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com