【摘要】 缓冲区溢出是一种使用广泛、威胁大的攻击。现在提出一种对于函数返回地址进行混合保护的方法,防止攻击者通过改变函数返回地址来执行注入的代码。这种方法包括一个简单的编译器补丁,增强编译器的安全功能,建立一个安全区域保存所有的函数返回地址的拷贝,而且该拷贝通过动态的编码,让攻击者难以进行猜测和攻击。使用这种方法,不需要改变用户程序的原代码,也不会改变用户程序的二进制堆栈结构,所以可以很好的和原有的操作系统、函数库结合。现在对这种方法的性能进行测试,详细描述测试结果,并认为对性能的影响在可以接受的范围,因此这种方法是一种有效的抵御缓冲区攻击的方法。更多还原

【Abstract】 Buffer overflow attack now is one of the most common vulnerabilities that can seriously compromise the security of almost any programs.The paper presents a return address mix-protection based method to defending against the attacks which change the return address and execute injected code.The method includes a simple compiler patch to build a security area to record the copy of all the function return address.And the copy is dynamic encoding to prevent the attacker from guessing the real address.Using the method,the source code of user program need not be changed and the binary stack frame does not alter.It a good scheme to keep compatible with original OS and libraries.The paper also tests the performance of this method and describes the result,which is acceptable.As a result,the method is an effective way to defending against buffer overflow attack.更多还原