EconPapers    
Economics at your fingertips  

EconPapers Home
About EconPapers

Working Papers
Journal Articles
Books and Chapters
Software Components

Authors

JEL codes
New Economics Papers

Advanced Search


EconPapers FAQ
Archive maintainers FAQ
Cookies at EconPapers

Format for printing

The RePEc blog
The RePEc plagiarism page

 

Lightweight and Seamless Memory Randomization for Mission-Critical Services in a Cloud Platform

Joobeom Yun, Ki-Woong Park, Dongyoung Koo and Youngjoo Shin
Additional contact information
Joobeom Yun: Department of Computer and Information Security, Sejong University, Seoul 05006, Korea
Ki-Woong Park: Department of Computer and Information Security, Sejong University, Seoul 05006, Korea
Dongyoung Koo: Department of Electronics and Information Engineering, Hansung University, Seoul 02876, Korea
Youngjoo Shin: Department of Computer and Information Engineering, Kwangwoon University, Seoul 01897, Korea

Energies, 2020, vol. 13, issue 6, 1-15

Abstract: Nowadays, various computing services are often hosted on cloud platforms for their availability and cost effectiveness. However, such services are frequently exposed to vulnerabilities. Therefore, many countermeasures have been invented to defend against software hacking. At the same time, more complicated attacking techniques have been created. Among them, code-reuse attacks are still an effective means of abusing software vulnerabilities. Although state-of-the-art address space layout randomization (ASLR) runtime-based solutions provide a robust way to mitigate code-reuse attacks, they have fundamental limitations; for example, the need for system modifications, and the need for recompiling source codes or restarting processes. These limitations are not appropriate for mission-critical services because a seamless operation is very important. In this paper, we propose a novel ASLR technique to provide memory rerandomization without interrupting the process execution. In addition, we describe its implementation and evaluate the results. In summary, our method provides a lightweight and seamless ASLR for critical service applications.

Keywords: address space layout randomization (ASLR); rerandomization; code-reuse attack; return-oriented programming (ROP); seamless memory randomization (search for similar items in EconPapers)
JEL-codes: Q Q0 Q4 Q40 Q41 Q42 Q43 Q47 Q48 Q49 (search for similar items in EconPapers)
Date: 2020
References: View complete reference list from CitEc
Citations:

Downloads: (external link)
https://www.mdpi.com/1996-1073/13/6/1332/pdf (application/pdf)
https://www.mdpi.com/1996-1073/13/6/1332/ (text/html)

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:gam:jeners:v:13:y:2020:i:6:p:1332-:d:331978

Access Statistics for this article

Energies is currently edited by Ms. Agatha Cao

More articles in Energies from MDPI
Bibliographic data for series maintained by MDPI Indexing Manager ().

 
Share

RePEc
This site is part of RePEc and all the data displayed here is part of the RePEc data set.

Is your work missing from RePEc? Here is how to contribute.

Questions or problems? Check the EconPapers FAQ or send mail to .

Örebro UniversityEconPapers is hosted by the School of Business at Örebro University.

Page updated 2025-03-19
Handle: RePEc:gam:jeners:v:13:y:2020:i:6:p:1332-:d:331978