BR112014017156A8 - prevenção de execução dinâmica para impedir programação orientada para retorno - Google Patents
prevenção de execução dinâmica para impedir programação orientada para retornoInfo
- Publication number
- BR112014017156A8 BR112014017156A8 BR112014017156A BR112014017156A BR112014017156A8 BR 112014017156 A8 BR112014017156 A8 BR 112014017156A8 BR 112014017156 A BR112014017156 A BR 112014017156A BR 112014017156 A BR112014017156 A BR 112014017156A BR 112014017156 A8 BR112014017156 A8 BR 112014017156A8
- Authority
- BR
- Brazil
- Prior art keywords
- subset
- series
- memory page
- oriented programming
- memory
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/52—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
- G06F21/54—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by adding security routines or objects to programs
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
- Executing Machine-Instructions (AREA)
- Devices For Executing Special Programs (AREA)
- Stored Programmes (AREA)
Abstract
resumo prevenção de execução dinâmica para impedir programação orientada para retorno são apresentados um método, um equipamento e ou um sistema para prevenção de execução. um indicador de estado para um primeiro subconjunto de uma série de páginas de memória de código executável em um aparelho de memória é fixado em um estado não executável. um indicador de estado para um segundo subconjunto da série de páginas de memória é fixado em um estado executável no qual o segundo subconjunto da série de páginas de memória inclui stubs de indireção para funções no primeiro subconjunto da série de páginas de memória. quando da execução de um aplicativo, uma chamada de função é direcionada para um stub de indireção no segundo subconjunto da série de páginas de memória que modifica o indicador de estado para uma função correspondente no primeiro subconjunto da série de páginas de memória antes de se direcionar a execução da função chamada do primeiro subconjunto da série de páginas de memória.
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US13/351,006 US8776223B2 (en) | 2012-01-16 | 2012-01-16 | Dynamic execution prevention to inhibit return-oriented programming |
PCT/US2013/021591 WO2013109546A1 (en) | 2012-01-16 | 2013-01-15 | Dynamic execution prevention to inhibit return-oriented programming |
Publications (2)
Publication Number | Publication Date |
---|---|
BR112014017156A2 BR112014017156A2 (pt) | 2017-06-13 |
BR112014017156A8 true BR112014017156A8 (pt) | 2017-07-04 |
Family
ID=47604256
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
BR112014017156A BR112014017156A8 (pt) | 2012-01-16 | 2013-01-15 | prevenção de execução dinâmica para impedir programação orientada para retorno |
Country Status (8)
Country | Link |
---|---|
US (1) | US8776223B2 (pt) |
EP (1) | EP2805246B1 (pt) |
JP (1) | JP5769891B2 (pt) |
KR (1) | KR101480821B1 (pt) |
CN (2) | CN104054061B (pt) |
BR (1) | BR112014017156A8 (pt) |
TW (1) | TWI468980B (pt) |
WO (1) | WO2013109546A1 (pt) |
Families Citing this family (35)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9256730B2 (en) * | 2012-09-07 | 2016-02-09 | Crowdstrike, Inc. | Threat detection for return oriented programming |
US9177147B2 (en) * | 2012-09-28 | 2015-11-03 | Intel Corporation | Protection against return oriented programming attacks |
US9223979B2 (en) * | 2012-10-31 | 2015-12-29 | Intel Corporation | Detection of return oriented programming attacks |
WO2014189510A1 (en) * | 2013-05-23 | 2014-11-27 | Intel Corporation | Techniques for detecting return-oriented programming |
US9189214B2 (en) * | 2013-10-30 | 2015-11-17 | International Business Machines Corporation | Code stack management |
US9703948B2 (en) * | 2014-03-28 | 2017-07-11 | Intel Corporation | Return-target restrictive return from procedure instructions, processors, methods, and systems |
US9390264B2 (en) | 2014-04-18 | 2016-07-12 | Qualcomm Incorporated | Hardware-based stack control information protection |
US9904780B2 (en) * | 2014-07-31 | 2018-02-27 | Nec Corporation | Transparent detection and extraction of return-oriented-programming attacks |
EP2996034B1 (en) * | 2014-09-11 | 2018-08-15 | Nxp B.V. | Execution flow protection in microcontrollers |
WO2016041592A1 (en) * | 2014-09-17 | 2016-03-24 | Irdeto B.V. | Generating and executing protected items of software |
US9646154B2 (en) * | 2014-12-12 | 2017-05-09 | Microsoft Technology Licensing, Llc | Return oriented programming (ROP) attack protection |
US9569613B2 (en) * | 2014-12-23 | 2017-02-14 | Intel Corporation | Techniques for enforcing control flow integrity using binary translation |
SG10201504066QA (en) * | 2015-05-25 | 2016-12-29 | Huawei Internat Pte Ltd | Method and system for defense against return oriented programming (rop) based attacks |
US9576138B1 (en) | 2015-09-30 | 2017-02-21 | International Business Machines Corporation | Mitigating ROP attacks |
US9767292B2 (en) | 2015-10-11 | 2017-09-19 | Unexploitable Holdings Llc | Systems and methods to identify security exploits by generating a type based self-assembling indirect control flow graph |
US9904782B2 (en) * | 2015-10-27 | 2018-02-27 | Mcafee, Llc | Synchronous execution of designated computing events using hardware-assisted virtualization |
US10152592B2 (en) | 2015-12-11 | 2018-12-11 | International Business Machines Corporation | Compiler assisted protection against arbitrary code execution |
US10762199B2 (en) | 2015-12-11 | 2020-09-01 | International Business Machines Corporation | Compiler assisted protection against arbitrary code execution |
US10007787B2 (en) | 2015-12-28 | 2018-06-26 | International Business Machines Corporation | Runtime return-oriented programming detection |
KR20180117204A (ko) * | 2016-04-26 | 2018-10-26 | 미쓰비시덴키 가부시키가이샤 | 침입 검지 장치, 침입 검지 방법 및 기억 매체에 저장된 침입 검지 프로그램 |
US10423792B2 (en) | 2016-09-23 | 2019-09-24 | Red Hat, Inc. | Identifying exploitable code sequences |
US10437990B2 (en) | 2016-09-30 | 2019-10-08 | Mcafee, Llc | Detection of return oriented programming attacks in a processor |
KR101908573B1 (ko) | 2016-11-01 | 2018-10-16 | 성균관대학교 산학협력단 | 효율적인 리턴-지향형 프로그래밍 공격을 방어할 수 있도록 컴퓨터 프로그램을 생성하는 방법 |
US10599835B2 (en) * | 2018-02-06 | 2020-03-24 | Vmware, Inc. | 32-bit address space containment to secure processes from speculative rogue cache loads |
CN110598406B (zh) * | 2018-06-12 | 2022-08-23 | 杨力祥 | 一种数据保护方法及计算装置 |
CN112955887A (zh) | 2018-11-07 | 2021-06-11 | C2A安全有限公司 | 面向返回的编程防护 |
US11036619B2 (en) | 2019-06-06 | 2021-06-15 | International Business Machines Corporation | Bypassing execution of a module in real-time |
US10915426B2 (en) | 2019-06-06 | 2021-02-09 | International Business Machines Corporation | Intercepting and recording calls to a module in real-time |
US11016762B2 (en) | 2019-06-06 | 2021-05-25 | International Business Machines Corporation | Determining caller of a module in real-time |
US10929126B2 (en) | 2019-06-06 | 2021-02-23 | International Business Machines Corporation | Intercepting and replaying interactions with transactional and database environments |
US11074069B2 (en) | 2019-06-06 | 2021-07-27 | International Business Machines Corporation | Replaying interactions with transactional and database environments with re-arrangement |
US11341241B2 (en) | 2019-11-08 | 2022-05-24 | International Business Machines Corporation | Enhancing memory safe programming using a page frame tag mechanism |
US20220358040A1 (en) * | 2021-05-07 | 2022-11-10 | Ventana Micro Systems Inc. | Unforwardable load instruction re-execution eligibility based on cache update by identified store instruction |
US11989286B2 (en) * | 2021-05-07 | 2024-05-21 | Ventana Micro Systems Inc. | Conditioning store-to-load forwarding (STLF) on past observations of STLF propriety |
US11989285B2 (en) | 2021-05-07 | 2024-05-21 | Ventana Micro Systems Inc. | Thwarting store-to-load forwarding side channel attacks by pre-forwarding matching of physical address proxies and/or permission checking |
Family Cites Families (29)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5742840A (en) * | 1995-08-16 | 1998-04-21 | Microunity Systems Engineering, Inc. | General purpose, multiple precision parallel operation, programmable media processor |
US6317870B1 (en) * | 1999-02-26 | 2001-11-13 | Hewlett-Packard Company | System and method for optimization of inter-module procedure calls |
US6654888B1 (en) * | 1999-12-31 | 2003-11-25 | International Business Machines Corporation | Installing and controlling trial software |
GB0226874D0 (en) * | 2002-11-18 | 2002-12-24 | Advanced Risc Mach Ltd | Switching between secure and non-secure processing modes |
US7475220B1 (en) | 2003-08-18 | 2009-01-06 | Cray Incorporated | Buffer overflow detection |
US7287283B1 (en) | 2003-09-25 | 2007-10-23 | Symantec Corporation | Return-to-LIBC attack blocking system and method |
US20080133858A1 (en) | 2004-11-04 | 2008-06-05 | Board Of Trustees Of Michigan State University | Secure Bit |
US7540026B1 (en) | 2005-01-24 | 2009-05-26 | Symantec Corporation | No-execute processor feature global disabling prevention system and method |
WO2007035623A1 (en) * | 2005-09-17 | 2007-03-29 | Technology Group Northwest Inc. | System and method for foiling code-injection attacks in a computing device |
GB0525871D0 (en) * | 2005-12-20 | 2006-02-01 | Symbian Software Ltd | Malicious software detecting in a computing device |
US8041958B2 (en) * | 2006-02-14 | 2011-10-18 | Lenovo (Singapore) Pte. Ltd. | Method for preventing malicious software from execution within a computer system |
US7464226B2 (en) * | 2006-02-23 | 2008-12-09 | Lars Andreas Reinertsen | Fractional caching |
US8079032B2 (en) * | 2006-03-22 | 2011-12-13 | Webroot Software, Inc. | Method and system for rendering harmless a locked pestware executable object |
US9104871B2 (en) * | 2006-04-06 | 2015-08-11 | Juniper Networks, Inc. | Malware detection system and method for mobile platforms |
JP2007304954A (ja) * | 2006-05-12 | 2007-11-22 | Sharp Corp | メモリ保護機能を有するコンピュータシステム |
US8286238B2 (en) * | 2006-09-29 | 2012-10-09 | Intel Corporation | Method and apparatus for run-time in-memory patching of code from a service processor |
CN101093531B (zh) * | 2007-04-30 | 2011-05-11 | 李宏强 | 一种提高计算机软件安全的方法 |
CN100541509C (zh) * | 2007-12-10 | 2009-09-16 | 上海北大方正科技电脑***有限公司 | 一种查杀电脑病毒的方法 |
US8074281B2 (en) * | 2008-01-14 | 2011-12-06 | Microsoft Corporation | Malware detection with taint tracking |
US8578483B2 (en) | 2008-07-31 | 2013-11-05 | Carnegie Mellon University | Systems and methods for preventing unauthorized modification of an operating system |
CN101446905B (zh) * | 2008-12-29 | 2012-06-27 | 飞天诚信科技股份有限公司 | 编译方法 |
EP2256659A1 (en) * | 2009-05-27 | 2010-12-01 | NTT DoCoMo, Inc. | Method and apparatus for preventing modification of a program execution flow |
US8352797B2 (en) | 2009-12-08 | 2013-01-08 | Microsoft Corporation | Software fault isolation using byte-granularity memory protection |
US8464233B2 (en) * | 2010-06-21 | 2013-06-11 | Microsoft Corporation | Compile time interpretation of markup codes |
US8756590B2 (en) * | 2010-06-22 | 2014-06-17 | Microsoft Corporation | Binding data parallel device source code |
US8789189B2 (en) * | 2010-06-24 | 2014-07-22 | NeurallQ, Inc. | System and method for sampling forensic data of unauthorized activities using executability states |
US8332594B2 (en) * | 2010-06-28 | 2012-12-11 | International Business Machines Corporation | Memory management computer |
US9116717B2 (en) * | 2011-05-27 | 2015-08-25 | Cylance Inc. | Run-time interception of software methods |
US20120331303A1 (en) * | 2011-06-23 | 2012-12-27 | Andersson Jonathan E | Method and system for preventing execution of malware |
-
2012
- 2012-01-16 US US13/351,006 patent/US8776223B2/en active Active
-
2013
- 2013-01-15 WO PCT/US2013/021591 patent/WO2013109546A1/en active Application Filing
- 2013-01-15 CN CN201380005427.4A patent/CN104054061B/zh active Active
- 2013-01-15 CN CN201510679658.4A patent/CN105303104B/zh active Active
- 2013-01-15 EP EP13701340.5A patent/EP2805246B1/en active Active
- 2013-01-15 KR KR1020147022839A patent/KR101480821B1/ko active IP Right Grant
- 2013-01-15 BR BR112014017156A patent/BR112014017156A8/pt not_active IP Right Cessation
- 2013-01-15 JP JP2014552383A patent/JP5769891B2/ja not_active Expired - Fee Related
- 2013-01-15 TW TW102101513A patent/TWI468980B/zh not_active IP Right Cessation
Also Published As
Publication number | Publication date |
---|---|
JP5769891B2 (ja) | 2015-08-26 |
US20130185792A1 (en) | 2013-07-18 |
BR112014017156A2 (pt) | 2017-06-13 |
CN104054061B (zh) | 2015-11-25 |
KR20140114433A (ko) | 2014-09-26 |
WO2013109546A1 (en) | 2013-07-25 |
JP2015503815A (ja) | 2015-02-02 |
KR101480821B1 (ko) | 2015-01-09 |
EP2805246B1 (en) | 2017-03-01 |
TW201342109A (zh) | 2013-10-16 |
TWI468980B (zh) | 2015-01-11 |
CN105303104A (zh) | 2016-02-03 |
US8776223B2 (en) | 2014-07-08 |
CN105303104B (zh) | 2019-03-22 |
CN104054061A (zh) | 2014-09-17 |
EP2805246A1 (en) | 2014-11-26 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
BR112014017156A8 (pt) | prevenção de execução dinâmica para impedir programação orientada para retorno | |
BR112017016219A2 (pt) | rastreamento de fluxo de dados através de monitoramento de memória | |
BR112019001479A2 (pt) | detecção baseada em núcleo de funcionalidade de aplicação alvo utilizando mapeamento de endereços virtuais | |
BR112018068108A2 (pt) | paginação em espectro não-licenciado | |
BR112018005915A8 (pt) | Sistema para destilar automaticamente conceitos a partir de problemas matemáticos e construir e testar dinamicamente a criação de problemas matemáticos a partir de uma coleção de conceitos matemáticos | |
BR112018001050A2 (pt) | dispositivo eletrônico portátil, sistema, método, módulo de ativação-detecção, meio não transitório e armadilhas para monitoramento de controle de pragas e roedores | |
BR112018069225A2 (pt) | sistema de endereçamento de alvo | |
BR112015024773A8 (pt) | Método, sistema e aparelho para comparação de imagens | |
BR112014023828A8 (pt) | Método e sistema para dinamicamente instalar plugins em aplicativo distribuído em sistemas remotos | |
BR112018016222A2 (pt) | dispositivo de inserção de implante | |
BR112013017759A2 (pt) | sistema, método, e artigo para avisar mudança de comportamento | |
BR112018011567A2 (pt) | método de purificação de uma proteína de interesse, e, uso de um método. | |
BR112013017176A2 (pt) | sistemas e métodos para fornecer recursos e interatividade em sistemas de computador | |
BR112017008453A2 (pt) | detecção automática de incompatibilidade de esquema | |
BR112015013917A2 (pt) | método, unidade de computação, e sistema | |
BR112013027005A2 (pt) | método e sistema para compartilhar e utilizar informação de localização em um terminal portátil | |
BR112017007498A2 (pt) | método de tratamento de uma porção de um poço, sistema de poço, e, fluido de tratamento de poço. | |
BR112017000852A2 (pt) | ?aparelho e método para gerar um sinal melhorado utilizando enchimento de ruído independente?. | |
BR112017022206A2 (pt) | fluxograma de atendimento, mecanismo, plataforma, dispositivo, sistema, método e meio legível por computador sensíveis ao contexto | |
CL2017002521A1 (es) | Paginación de sistema de procesamiento de eventos. | |
BR112015023345A2 (pt) | criação in situ de alvos planos de recurso natural | |
EA201992415A2 (ru) | Система генерирования мощности и способ ее автоматического управления | |
BR112015029368A2 (pt) | sistema e método para processar plástico, e plástico processado a partir dos mesmos | |
CL2012000098A1 (es) | Un sistema de control metodo y aparato para aumentar el rendimiento de un ciclo kalina. | |
BR112015000832A2 (pt) | dispositivo habilitado por acessório; sistema para determinar compatibilidade entre dispositivos; e método para determinar compatibilidade para habilitar uso do dispositivo |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
B06F | Objections, documents and/or translations needed after an examination request according [chapter 6.6 patent gazette] | ||
B08F | Application dismissed because of non-payment of annual fees [chapter 8.6 patent gazette] |
Free format text: REFERENTE A 7A ANUIDADE. |
|
B08K | Patent lapsed as no evidence of payment of the annual fee has been furnished to inpi [chapter 8.11 patent gazette] |
Free format text: EM VIRTUDE DO ARQUIVAMENTO PUBLICADO NA RPI 2549 DE 12-11-2019 E CONSIDERANDO AUSENCIA DE MANIFESTACAO DENTRO DOS PRAZOS LEGAIS, INFORMO QUE CABE SER MANTIDO O ARQUIVAMENTO DO PEDIDO DE PATENTE, CONFORME O DISPOSTO NO ARTIGO 12, DA RESOLUCAO 113/2013. |
|
B350 | Update of information on the portal [chapter 15.35 patent gazette] |