JP2022502723A5 - - Google Patents

Info

Publication number
JP2022502723A5
JP2022502723A5 JP2020558936A JP2020558936A JP2022502723A5 JP 2022502723 A5 JP2022502723 A5 JP 2022502723A5 JP 2020558936 A JP2020558936 A JP 2020558936A JP 2020558936 A JP2020558936 A JP 2020558936A JP 2022502723 A5 JP2022502723 A5 JP 2022502723A5
Authority
JP
Japan
Prior art keywords
stack
routines
address
code
return address
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
JP2020558936A
Other languages
English (en)
Japanese (ja)
Other versions
JP2022502723A (ja
Filing date
Publication date
Application filed filed Critical
Priority claimed from PCT/IL2019/051075 external-priority patent/WO2020079676A1/en
Publication of JP2022502723A publication Critical patent/JP2022502723A/ja
Publication of JP2022502723A5 publication Critical patent/JP2022502723A5/ja
Pending legal-status Critical Current

Links

JP2020558936A 2018-10-18 2019-10-02 スタック破損のエクスプロイトに対する中間コードファイルにおけるセキュリティ緩和手段の適用 Pending JP2022502723A (ja)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US201862747150P 2018-10-18 2018-10-18
US62/747,150 2018-10-18
PCT/IL2019/051075 WO2020079676A1 (en) 2018-10-18 2019-10-02 Applying security mitigation measures for stack corruption exploitation in intermediate code files

Publications (2)

Publication Number Publication Date
JP2022502723A JP2022502723A (ja) 2022-01-11
JP2022502723A5 true JP2022502723A5 (https=) 2022-10-12

Family

ID=70279555

Family Applications (1)

Application Number Title Priority Date Filing Date
JP2020558936A Pending JP2022502723A (ja) 2018-10-18 2019-10-02 スタック破損のエクスプロイトに対する中間コードファイルにおけるセキュリティ緩和手段の適用

Country Status (6)

Country Link
US (2) US11231948B2 (https=)
EP (1) EP3867784B1 (https=)
JP (1) JP2022502723A (https=)
ES (1) ES2988317T3 (https=)
IL (1) IL282388B2 (https=)
WO (1) WO2020079676A1 (https=)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11157611B2 (en) * 2018-01-02 2021-10-26 Blackberry Limited Binary image stack cookie protection
US11231948B2 (en) 2018-10-18 2022-01-25 Sternum Ltd. Applying security mitigation measures for stack corruption exploitation in intermediate code files
US11176060B2 (en) 2018-10-29 2021-11-16 Sternum Ltd. Dynamic memory protection
US12353860B2 (en) * 2022-02-10 2025-07-08 Mitsubishi Electric Corporation Programmable controller system, development support device, and recording medium
US12216761B2 (en) * 2022-03-08 2025-02-04 Denso Corporation Dynamic adaptation of memory elements to prevent malicious attacks

Family Cites Families (28)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6802056B1 (en) * 1999-06-30 2004-10-05 Microsoft Corporation Translation and transformation of heterogeneous programs
JP2001160080A (ja) * 1999-12-02 2001-06-12 Nec Corp オブジェクト指向言語によるシステムのシミュレーション方法、装置及びそのプログラムを記録した記録媒体
JP3552627B2 (ja) * 2000-02-04 2004-08-11 インターナショナル・ビジネス・マシーンズ・コーポレーション スタック保護システム、コンピュータシステム、コンパイラ、スタック保護方法および記憶媒体
US7752459B2 (en) 2001-12-06 2010-07-06 Novell, Inc. Pointguard: method and system for protecting programs against pointer corruption attacks
US20040045018A1 (en) * 2002-08-27 2004-03-04 Nair Sreekumar R. Using address space bridge in postoptimizer to route indirect calls at runtime
US7356813B2 (en) * 2002-09-26 2008-04-08 Hewlett-Packard Development Company, L.P. System and method for optimizing a program
JP4518564B2 (ja) 2003-09-04 2010-08-04 サイエンスパーク株式会社 不正コード実行の防止方法、不正コード実行の防止用プログラム、及び不正コード実行の防止用プログラムの記録媒体
JP4806204B2 (ja) * 2005-03-30 2011-11-02 株式会社日立国際電気 暗号化データ通信システム
US7913243B2 (en) * 2005-06-21 2011-03-22 International Business Machines Corporation Method and system for generating and applying patches to a computer program concurrently with its execution
US8510596B1 (en) 2006-02-09 2013-08-13 Virsec Systems, Inc. System and methods for run time detection and correction of memory corruption
EP1870829B1 (en) * 2006-06-23 2014-12-03 Microsoft Corporation Securing software by enforcing data flow integrity
US7904881B2 (en) * 2006-07-26 2011-03-08 Intel Corporation Using a virtual stack for fast and composable stack cutting
US20080247532A1 (en) * 2007-04-06 2008-10-09 Waldean Allen Schulz Method and System for Representing Quantitative Properties in a Computer Program and for Validating Dimensional Integrity of Mathematical Expressions
US20090113403A1 (en) * 2007-09-27 2009-04-30 Microsoft Corporation Replacing no operations with auxiliary code
US8996760B2 (en) * 2011-11-03 2015-03-31 Intel Corporation Method to emulate message signaled interrupts with interrupt data
US20150007142A1 (en) * 2012-12-12 2015-01-01 Google Inc. Branch destination tables
WO2015038944A1 (en) 2013-09-12 2015-03-19 Virsec Systems, Inc. Automated runtime detection of malware
US9390264B2 (en) 2014-04-18 2016-07-12 Qualcomm Incorporated Hardware-based stack control information protection
US9390260B2 (en) * 2014-06-09 2016-07-12 Lehigh University Methods for enforcing control flow of a computer program
CN106687971B (zh) 2014-06-24 2020-08-28 弗塞克系统公司 用来减少软件的攻击面的自动代码锁定
US9870469B2 (en) 2014-09-26 2018-01-16 Mcafee, Inc. Mitigation of stack corruption exploits
US9754112B1 (en) * 2014-11-24 2017-09-05 Bluerisc, Inc. Detection and healing of vulnerabilities in computer code
US9569613B2 (en) * 2014-12-23 2017-02-14 Intel Corporation Techniques for enforcing control flow integrity using binary translation
US10289842B2 (en) * 2015-11-12 2019-05-14 Samsung Electronics Co., Ltd. Method and apparatus for protecting kernel control-flow integrity using static binary instrumentation
US10157268B2 (en) * 2016-09-27 2018-12-18 Microsoft Technology Licensing, Llc Return flow guard using control stack identified by processor register
WO2018071450A1 (en) * 2016-10-11 2018-04-19 Green Hills Software, Inc. Systems, methods, and devices for vertically integrated instrumentation and trace reconstruction
US10698668B1 (en) * 2018-05-29 2020-06-30 Amazon Technologies, Inc. Custom code transformations during compilation process
US11231948B2 (en) 2018-10-18 2022-01-25 Sternum Ltd. Applying security mitigation measures for stack corruption exploitation in intermediate code files

Similar Documents

Publication Publication Date Title
JP2022502723A5 (https=)
JP6506412B2 (ja) アプリケーションロード方法及び装置
US9003398B2 (en) Stochastic method for program security using deferred linking
US8615735B2 (en) System and method for blurring instructions and data via binary obfuscation
GB2603444A (en) Enhancing memory safe programming using page frame tag mechanism
JP2022511170A5 (https=)
JP2022502723A (ja) スタック破損のエクスプロイトに対する中間コードファイルにおけるセキュリティ緩和手段の適用
CN105095762A (zh) 基于地址随机和段隔离的全局偏移表保护方法
US9715398B2 (en) Program code loading method of application and computing system using the same
US12499212B2 (en) Apparatus and method for kernel runtime randomization
CN111694580B (zh) 存储设备升级及初始化的方法、装置、电子设备
CN104331308B (zh) 一种pe程序文件加载执行方法
US20060259900A1 (en) Method for creating unique identification for copies of executable code and management thereof
US20060259903A1 (en) Method for creating unique identification for copies of executable code and management thereof
US20180096139A1 (en) Method and system for defense against return oriented programming (rop) based attacks
CN107688474A (zh) 启动方法、生成内核镜像的方法及装置
CN110909347B (zh) 一种基于Mcsema的Remill库栈污染分析方法及装置
KR20200017120A (ko) 코스 스프레잉을 이용한 코드 보호 방법 및 시스템
EP3877881B1 (en) Return-oriented programming protection
KR102167767B1 (ko) 머신러닝의 학습 데이터셋 생성을 위한 애플리케이션 자동화 빌드 장치 및 방법
KR100745256B1 (ko) 임베디드 시스템에서의 코드 오버레이 방법
US11720340B2 (en) Hash map of executable control blocks
JP2005063311A (ja) プロセッサシステムのパッチ方法およびパッチ適用プログラム
KR20200017121A (ko) 원타임 코드를 이용한 코드 보호 방법 및 시스템
JP7270511B2 (ja) 制御装置及び方法