ROP defense using trie graph for system security

Zhu, AYC; Yan, WQ; Sinha, Roopak

ROP defense using trie graph for system security

journal contribution

posted on 2024-06-03, 02:57 authored by AYC Zhu, WQ Yan, Roopak SinhaRoopak Sinha

Most Intrusion Detection Systems (IDS) / Intrusion Prevention Systems (IPS) cannot defend the attacks from a Return Oriented Program (ROP) which applies code reusing and exploiting techniques without the need for code injection. Malicious attackers chain a short sequence as a gadget and execute this gadget as an arbitrary (Turing-complete) behavior in the target program. Lots of ROP defense tools have been developed with satisfactory performance and low costs overhead, but malicious attackers can evade ROP tools. Therefore, it needs security researchers to continually improve existing ROP defense tools, because the defense ability of target devices, such as smartphones is weak, and such devices are being increasingly targeted. Our contribution in this paper is to propose an ROP defense method that has provided a better performance of defense against ROP attacks than existing ROP defense tools.

History

Journal

International Journal of Digital Crime and Forensics

Volume

13

Pagination

1-12

Location

Hershey, PA.

ISSN

1941-6210

eISSN

1941-6229

Language

eng

Publication classification

C1.1 Refereed article in a scholarly journal

Issue

6

Publisher

IGI Global

Publication URL

http://dx.doi.org/10.4018/ijdcf.20211101.oa7

Usage metrics

Keywords

Code-Reuse Attack Computer Science Computer Science, Interdisciplinary Applications Cyber-Attack Network Security Return-Oriented Programming Science & Technology Technology

ROP defense using trie graph for system security

History

Journal

Volume

Pagination

Location

ISSN

eISSN

Language

Publication classification

Issue

Publisher

Publication URL

Usage metrics

Categories

Keywords

Licence

Exports