Building Secure Defenses Against Code-Reuse Attacks (SpringerBriefs in Computer Science)
暫譯: 建立對抗程式碼重用攻擊的安全防禦 (SpringerBriefs in Computer Science)
Lucas Davi
- 出版商: Springer
- 出版日期: 2015-12-16
- 售價: $2,390
- 貴賓價: 9.5 折 $2,271
- 語言: 英文
- 頁數: 84
- 裝訂: Paperback
- ISBN: 3319255444
- ISBN-13: 9783319255446
-
相關分類:
Computer-Science
海外代購書籍(需單獨結帳)
商品描述
This book provides an in-depth look at return-oriented programming attacks. It explores several conventional return-oriented programming attacks and analyzes the effectiveness of defense techniques including address space layout randomization (ASLR) and the control-flow restrictions implemented in security watchdogs such as Microsoft EMET.
Chapters also explain the principle of control-flow integrity (CFI), highlight the benefits of CFI and discuss its current weaknesses. Several improved and sophisticated return-oriented programming attack techniques such as just-in-time return-oriented programming are presented.
Building Secure Defenses against Code-Reuse Attacks is an excellent reference tool for researchers, programmers and professionals working in the security field. It provides advanced-level students studying computer science with a comprehensive overview and clear understanding of important runtime attacks.
商品描述(中文翻譯)
這本書深入探討了以返回為導向的程式設計攻擊。它探討了幾種傳統的以返回為導向的程式設計攻擊,並分析了防禦技術的有效性,包括地址空間佈局隨機化(ASLR)以及在安全監控工具中實施的控制流限制,例如 Microsoft EMET。
各章節還解釋了控制流完整性(CFI)的原理,強調了 CFI 的好處並討論了其當前的弱點。書中介紹了幾種改進和複雜的以返回為導向的程式設計攻擊技術,例如即時返回導向程式設計(just-in-time return-oriented programming)。
《建立對抗程式碼重用攻擊的安全防禦》是研究人員、程式設計師和在安全領域工作的專業人士的優秀參考工具。它為學習計算機科學的高級學生提供了重要運行時攻擊的全面概述和清晰理解。
