Libra: A Compatible Method for Defending Against Arbitrary Memory Overwrite

NCUIR > College of Electrical Engineering & Computer Science > Graduate Institute of Computer Science and Information Engineering > Electronic Thesis & Dissertation > Item 987654321/65750

Please use this identifier to cite or link to this item: http://ir.lib.ncu.edu.tw/handle/987654321/65750

Title:	Libra: A Compatible Method for Defending Against Arbitrary Memory Overwrite
Authors:	黃建瑋;Huang,Chi-Wei
Contributors:	資訊工程學系
Keywords:	Linux Kernel Vulnerabilities;Exploit;Privilege Escalation;Linux Kernel Vulnerabilities;Exploit;Privilege Escalation
Date:	2014-07-31
Issue Date:	2014-10-15 17:09:28 (UTC+8)
Publisher:	國立中央大學
Abstract:	Linux Kernel 的弱點數目在2013年達到高峰，更勝過去自1991年以來的弱點數目。本篇論文關注於Privilege Escalation攻擊類型中任意寫入memory的防禦方式。為了防止惡意的User拿到Root權限。最簡單的方法，當然就是把內核中的敏感資料結構設為唯讀。但是我們不確定未來內核是否有需要須改這些敏感的資料結構，所以我們在唯讀與可寫中取一個折衷的方法。本論文所談論到的方法不僅僅，可以使用在以上的問題，更可以推廣到系統中有某一重要記憶體值，需要在某一安全範圍內更改，而不能只是單純的設定為唯讀。 ;There have been more vulnerabilities in the Linux Kernel in 2013 than there had been in the previous decade. In this paper, the research was focused on defending against arbitrary memory overwrites in Privilege Escalation. To avoid malicious users getting root authority. The easiest way is to set the sensitive data structure to read-only. But we are not sure the sensitive data structure will never be modified by legal behavior from a normal device driver; thus, we posed a compatible solution between read-only solutions and writable solutions to enhance compatibility. The main idea that we posed not only solves the above problem, but also the general problem which is ensuring that important memory values can only be changed within a safe range. It is not just set to read-only.
Appears in Collections:	[Graduate Institute of Computer Science and Information Engineering] Electronic Thesis & Dissertation

Files in This Item:

File	Description	Size	Format
index.html		0Kb	HTML	488	View/Open

社群 sharing

Loading...