JITDefender: A Defense against JIT Spraying Attacks - Archive ouverte HAL Access content directly
Conference Papers Year : 2011

JITDefender: A Defense against JIT Spraying Attacks

(1) , (1) , (1) , (1)
1
Ping Chen
  • Function : Author
  • PersonId : 1013406
Yi Fang
  • Function : Author
  • PersonId : 1013407
Bing Mao
  • Function : Author
  • PersonId : 989381
Li Xie
  • Function : Author
  • PersonId : 989382

Abstract

JIT spraying is a new code-reuse technique to attack virtual machines based on JIT (Just-in-time) compilation. It has proven to be capable of circumventing the defenses such as data execution prevention (DEP) and address space layout randomization(ASLR), which are effective for preventing the traditional code injection attacks. In this paper, we describe JITDefender, an enhancement of standard JIT-based VMs, which can prevent the attacker from executing arbitrary JIT compiled code on the VM. Thereby JITDefender can block JIT spraying attacks. We prove the effectiveness of JITDefender by demonstrating that it can successfully prevent existing JIT spraying exploits. JITDefender reports no false positives when run over benign actionscript/javascript programs. In addition, we show that the performance overhead of JITDefender is low.
Fichier principal
Vignette du fichier
978-3-642-21424-0_12_Chapter.pdf (189.51 Ko) Télécharger le fichier
Origin : Files produced by the author(s)
Loading...

Dates and versions

hal-01567598 , version 1 (24-07-2017)

Licence

Attribution - CC BY 4.0

Identifiers

Cite

Ping Chen, Yi Fang, Bing Mao, Li Xie. JITDefender: A Defense against JIT Spraying Attacks. 26th International Information Security Conference (SEC), Jun 2011, Lucerne, Switzerland. pp.142-153, ⟨10.1007/978-3-642-21424-0_12⟩. ⟨hal-01567598⟩
71 View
119 Download

Altmetric

Share

Gmail Facebook Twitter LinkedIn More