DC Field | Value | Language |
---|---|---|
dc.contributor.advisor | Kang, Brent Byunghoon | - |
dc.contributor.advisor | 강병훈 | - |
dc.contributor.author | Kang, Hyeonwoo | - |
dc.date.accessioned | 2022-04-27T19:32:22Z | - |
dc.date.available | 2022-04-27T19:32:22Z | - |
dc.date.issued | 2021 | - |
dc.identifier.uri | http://library.kaist.ac.kr/search/detail/view.do?bibCtrlNo=948624&flag=dissertation | en_US |
dc.identifier.uri | http://hdl.handle.net/10203/296187 | - |
dc.description | 학위논문(석사) - 한국과학기술원 : 정보보호대학원, 2021.2,[iv, 25 p. :] | - |
dc.description.abstract | Stack-based memory errors have been a serious source of software vulnerabilities. Although there is a wide spectrum of stack memory defenses proposed, most of them provide limited protection focusing on out-of-bound memory errors or involve unacceptable performance overhead. In this thesis, we explore the feasibility of byte-granularity stack layout randomization and propose SaVioR-E, efficient and comprehensive stack protection. We achieve it through three techniques: (1) isolating out-of-bound-unsafe stack objects, (2) random allocation of stack frames, and (3) introducing byte-granularity randomization by breaking the natural alignment of stack objects. SaVioR-E was implemented on the LLVM compiler infrastructure and evaluated using the SPEC CPU2006 benchmark suite and the Nginx web server. A security analysis was conducted to evaluate the effectiveness of SaVioR-E. The evaluation demonstrates SaVioR-E imposes 22% run-time overhead while achieving adequate legacy compatibility. | - |
dc.language | eng | - |
dc.publisher | 한국과학기술원 | - |
dc.subject | Byte-granularity randomization▼astack layout randomization▼aprobabilistic memory safety▼astatic instrumentation▼amemory protection | - |
dc.subject | 바이트 단위 랜덤화▼a스택 레이아웃 랜덤화▼a확률론적 메모리 안전성▼a정적 인스트루멘테이션▼a메모리 보호 기법 | - |
dc.title | Thwarting stack-based memory safety violations with stack layout randomization | - |
dc.title.alternative | 스택 레이아웃 랜덤화를 통한 메모리 안전성 위반 방지 | - |
dc.type | Thesis(Master) | - |
dc.identifier.CNRN | 325007 | - |
dc.description.department | 한국과학기술원 :정보보호대학원, | - |
dc.contributor.alternativeauthor | 강현우 | - |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.