Efficient array & pointer bound checking against buffer overflow attacks via hardware/software

Zili Shao; Chun Xue; Qingfeng Zhuge; Edwin H.M. Sha; Bin Xiao

Efficient array & pointer bound checking against buffer overflow attacks via hardware/software

Zili Shao^*
, Chun Xue
, Qingfeng Zhuge
, Edwin H.M. Sha
, Bin Xiao

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

3 Scopus citations

Abstract

Buffer overflow attacks cause serious security problems. Array & pointer bound checking is one of the most effective approaches for defending against buffer overflow attacks when source code is available. However, original array & pointer bound checking causes too much overhead since it is designed to catch memory errors and it puts too many checks. In this paper, we propose an efficient array & pointer bound checking strategy to defend against buffer overflow attacks. In our strategy, only the bounds of write operations are checked. We discuss the optimization strategy via hardware/software and conduct experiments. The experimental results show that our strategy can greatly reduce the overhead of array & pointer bound checking. Our conclusion is that based on our strategy, array & pointer bound checking can be a practical solution for defending systems against buffer overflow attacks with tolerable overhead.

Original language	English
Title of host publication	Proceedings ITCC 2005 - International Conference on Information Technology
Subtitle of host publication	Coding and Computing
Editors	H. Selvaraj, P.K. Srimani
Pages	780-785
Number of pages	6
State	Published - 2005
Externally published	Yes
Event	ITCC 2005 - International Conference on Information Technology: Coding and Computing - Las Vegas, NV, United States Duration: 4 Apr 2005 → 6 Apr 2005

Publication series

Name	International Conference on Information Technology: Coding and Computing, ITCC
Volume	1

Conference

Conference	ITCC 2005 - International Conference on Information Technology: Coding and Computing
Country/Territory	United States
City	Las Vegas, NV
Period	4/04/05 → 6/04/05

Cite this

Shao, Z., Xue, C., Zhuge, Q., Sha, E. H. M., & Xiao, B. (2005). Efficient array & pointer bound checking against buffer overflow attacks via hardware/software. In H. Selvaraj, & P. K. Srimani (Eds.), Proceedings ITCC 2005 - International Conference on Information Technology: Coding and Computing (pp. 780-785). (International Conference on Information Technology: Coding and Computing, ITCC; Vol. 1).

Shao, Zili ; Xue, Chun ; Zhuge, Qingfeng et al. / Efficient array & pointer bound checking against buffer overflow attacks via hardware/software. Proceedings ITCC 2005 - International Conference on Information Technology: Coding and Computing. editor / H. Selvaraj ; P.K. Srimani. 2005. pp. 780-785 (International Conference on Information Technology: Coding and Computing, ITCC).

@inproceedings{39fa9f8d3e4f433187ea7012a1904d42,

title = "Efficient array \& pointer bound checking against buffer overflow attacks via hardware/software",

abstract = "Buffer overflow attacks cause serious security problems. Array \& pointer bound checking is one of the most effective approaches for defending against buffer overflow attacks when source code is available. However, original array \& pointer bound checking causes too much overhead since it is designed to catch memory errors and it puts too many checks. In this paper, we propose an efficient array \& pointer bound checking strategy to defend against buffer overflow attacks. In our strategy, only the bounds of write operations are checked. We discuss the optimization strategy via hardware/software and conduct experiments. The experimental results show that our strategy can greatly reduce the overhead of array \& pointer bound checking. Our conclusion is that based on our strategy, array \& pointer bound checking can be a practical solution for defending systems against buffer overflow attacks with tolerable overhead.",

author = "Zili Shao and Chun Xue and Qingfeng Zhuge and Sha, \{Edwin H.M.\} and Bin Xiao",

year = "2005",

language = "英语",

isbn = "0769523153",

series = "International Conference on Information Technology: Coding and Computing, ITCC",

pages = "780--785",

editor = "H. Selvaraj and P.K. Srimani",

booktitle = "Proceedings ITCC 2005 - International Conference on Information Technology",

note = "ITCC 2005 - International Conference on Information Technology: Coding and Computing ; Conference date: 04-04-2005 Through 06-04-2005",

}

Shao, Z, Xue, C, Zhuge, Q , Sha, EHM & Xiao, B 2005, Efficient array & pointer bound checking against buffer overflow attacks via hardware/software. in H Selvaraj & PK Srimani (eds), Proceedings ITCC 2005 - International Conference on Information Technology: Coding and Computing. International Conference on Information Technology: Coding and Computing, ITCC, vol. 1, pp. 780-785, ITCC 2005 - International Conference on Information Technology: Coding and Computing, Las Vegas, NV, United States, 4/04/05.

Efficient array & pointer bound checking against buffer overflow attacks via hardware/software. / Shao, Zili; Xue, Chun; Zhuge, Qingfeng et al.
Proceedings ITCC 2005 - International Conference on Information Technology: Coding and Computing. ed. / H. Selvaraj; P.K. Srimani. 2005. p. 780-785 (International Conference on Information Technology: Coding and Computing, ITCC; Vol. 1).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Efficient array & pointer bound checking against buffer overflow attacks via hardware/software

AU - Shao, Zili

AU - Xue, Chun

AU - Zhuge, Qingfeng

AU - Sha, Edwin H.M.

AU - Xiao, Bin

PY - 2005

Y1 - 2005

N2 - Buffer overflow attacks cause serious security problems. Array & pointer bound checking is one of the most effective approaches for defending against buffer overflow attacks when source code is available. However, original array & pointer bound checking causes too much overhead since it is designed to catch memory errors and it puts too many checks. In this paper, we propose an efficient array & pointer bound checking strategy to defend against buffer overflow attacks. In our strategy, only the bounds of write operations are checked. We discuss the optimization strategy via hardware/software and conduct experiments. The experimental results show that our strategy can greatly reduce the overhead of array & pointer bound checking. Our conclusion is that based on our strategy, array & pointer bound checking can be a practical solution for defending systems against buffer overflow attacks with tolerable overhead.

AB - Buffer overflow attacks cause serious security problems. Array & pointer bound checking is one of the most effective approaches for defending against buffer overflow attacks when source code is available. However, original array & pointer bound checking causes too much overhead since it is designed to catch memory errors and it puts too many checks. In this paper, we propose an efficient array & pointer bound checking strategy to defend against buffer overflow attacks. In our strategy, only the bounds of write operations are checked. We discuss the optimization strategy via hardware/software and conduct experiments. The experimental results show that our strategy can greatly reduce the overhead of array & pointer bound checking. Our conclusion is that based on our strategy, array & pointer bound checking can be a practical solution for defending systems against buffer overflow attacks with tolerable overhead.

UR - https://www.scopus.com/pages/publications/24744464365

M3 - 会议稿件

AN - SCOPUS:24744464365

SN - 0769523153

T3 - International Conference on Information Technology: Coding and Computing, ITCC

SP - 780

EP - 785

BT - Proceedings ITCC 2005 - International Conference on Information Technology

A2 - Selvaraj, H.

A2 - Srimani, P.K.

T2 - ITCC 2005 - International Conference on Information Technology: Coding and Computing

Y2 - 4 April 2005 through 6 April 2005

ER -

Shao Z, Xue C, Zhuge Q , Sha EHM, Xiao B. Efficient array & pointer bound checking against buffer overflow attacks via hardware/software. In Selvaraj H, Srimani PK, editors, Proceedings ITCC 2005 - International Conference on Information Technology: Coding and Computing. 2005. p. 780-785. (International Conference on Information Technology: Coding and Computing, ITCC).

Efficient array & pointer bound checking against buffer overflow attacks via hardware/software

Abstract

Publication series

Conference

Other files and links

Fingerprint

Cite this