{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,17]],"date-time":"2026-06-17T19:23:14Z","timestamp":1781724194475,"version":"3.54.5"},"publisher-location":"Cham","reference-count":43,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783030220372","type":"print"},{"value":"9783030220389","type":"electronic"}],"license":[{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019]]},"DOI":"10.1007\/978-3-030-22038-9_13","type":"book-chapter","created":{"date-parts":[[2019,6,9]],"date-time":"2019-06-09T19:02:31Z","timestamp":1560106951000},"page":"263-287","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":5,"title":["Memory Categorization: Separating Attacker-Controlled Data"],"prefix":"10.1007","author":[{"given":"Matthias","family":"Neugschwandtner","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Alessandro","family":"Sorniotti","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Anil","family":"Kurmus","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","published-online":{"date-parts":[[2019,6,6]]},"reference":[{"key":"13_CR1","doi-asserted-by":"crossref","unstructured":"Abadi, M., Budiu, M., Erlingsson, \u00da, Ligatti, J.: Control-flow integrity. In: ACM Conference on Computer and Communications Security (CCS) (2005)","DOI":"10.1145\/1102120.1102165"},{"key":"13_CR2","unstructured":"Akritidis, P.: Cling: a memory allocator to mitigate dangling pointers. In: USENIX Security Symposium (2010)"},{"key":"13_CR3","doi-asserted-by":"crossref","unstructured":"Akritidis, P., Cadar, C., Raiciu, C., Costa, M., Castro, M.: Preventing memory error exploits with WIT. In: IEEE Symposium on Security and Privacy (2008)","DOI":"10.1109\/SP.2008.30"},{"key":"13_CR4","unstructured":"LAndersen, L.O.: Program Analysis and Specialization for the C Programming Language. Carnegie Mellon University (1994)"},{"key":"13_CR5","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-642-23644-0_1","volume-title":"Recent Advances in Intrusion Detection","author":"E Bosman","year":"2011","unstructured":"Bosman, E., Slowinska, A., Bos, H.: Minemu: the world\u2019s fastest taint tracker. In: Sommer, R., Balzarotti, D., Maier, G. (eds.) RAID 2011. LNCS, vol. 6961, pp. 1\u201320. Springer, Heidelberg (2011). \n                      https:\/\/doi.org\/10.1007\/978-3-642-23644-0_1"},{"key":"13_CR6","unstructured":"Brand, M., Evans, C.: Significant flash exploit mitigations are live in v18.0.0.209 (2015). \n                      https:\/\/googleprojectzero.blogspot.com\/2015\/07\/significant-flash-exploit-mitigations16.html"},{"key":"13_CR7","unstructured":"busybox. \n                      https:\/\/busybox.net\/"},{"key":"13_CR8","unstructured":"Carlini, N., Barresi, A., Payer, M., Wagner, D., Gross, T.R.: Control-flow bending: on the effectiveness of control-flow integrity. In: USENIX Security Symposium (USENIX SEC) (2015)"},{"key":"13_CR9","doi-asserted-by":"crossref","unstructured":"Carr, S.A., Payer, M.: DataShield: configurable data confidentiality and integrity. In: Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security. ASIA CCS 2017 (2017)","DOI":"10.1145\/3052973.3052983"},{"key":"13_CR10","unstructured":"Castro, M., Costa, M., Harris, T.: Securing software by enforcing data-flow integrity. In: Symposium on Operating Systems Design and Implementation (2006)"},{"key":"13_CR11","unstructured":"Chen, S., Xu, J., Sezer, E.C., Gauriar, P., Iyer, R.K.: Non-control-data attacks are realistic threats. In: Proceedings of the 14th Conference on USENIX Security Symposium, vol. 14, p. 12 (2005)"},{"key":"13_CR12","doi-asserted-by":"crossref","unstructured":"Chen, X., Slowinska, A., Bos, H.: Who allocated my memory? Detecting custom memory allocators in C binaries. In: Proceedings of the Working Conference on Reverse Engineering (WCRE) (2013)","DOI":"10.1109\/WCRE.2013.6671277"},{"key":"13_CR13","unstructured":"Disassembler Library for x86 and x86\u201364. \n                      https:\/\/github.com\/vmt\/udis86"},{"key":"13_CR14","unstructured":"Dropbear. \n                      https:\/\/matt.ucc.asn.au\/dropbear\/dropbear.html"},{"key":"13_CR15","unstructured":"Electric Fence. \n                      https:\/\/github.com\/kallisti5\/ElectricFence"},{"key":"13_CR16","doi-asserted-by":"crossref","unstructured":"Goktas, E., Athanasopoulos, E., Bos, H., Portokalidis, G.: Out of control: overcoming control- flow integrity. In: IEEE Symposium on Security and Privacy (Oakland) (2014)","DOI":"10.1109\/SP.2014.43"},{"key":"13_CR17","unstructured":"Kang, M.G., McCamant, S., Poosankam, P., Song, D.: DTA++: dynamic taint analysis with targeted control-flow propagation. In: Proceedings of the Network and Distributed System Security Symposium (NDSS) (2011)"},{"key":"13_CR18","doi-asserted-by":"crossref","unstructured":"Kemerlis, V.P., Portokalidis, G., Jee, K., Keromytis, A.D.: Libdft: practical dynamic data flow tracking for commodity systems. In: ACM SIGPLAN\/SIGOPS Conference on Virtual Execution Environments (2012)","DOI":"10.1145\/2151024.2151042"},{"key":"13_CR19","doi-asserted-by":"crossref","unstructured":"Kroes, T., et al.: BinRec: attack surface reduction through dynamic binary recovery. In: Proceedings of the 2018 Workshop on Forming an Ecosystem Around Software Transformation, FEAST 2018 (2018)","DOI":"10.1145\/3273045.3273050"},{"key":"13_CR20","doi-asserted-by":"crossref","unstructured":"Kurmus, A., Zippel, R.: A tale of two kernels: towards ending kernel hardening wars with split kernel. In: Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security, CCS 2014 (2014)","DOI":"10.1145\/2660267.2660331"},{"key":"13_CR21","unstructured":"Kuznetsov, V., Szekeres, L., Payer, M., Candea, G., Sekar, R., Song, D.: Code-pointer integrity. In: USENIX Symposium on Operating Systems Design and Implementation (OSDI) (2014)"},{"key":"13_CR22","doi-asserted-by":"crossref","unstructured":"Lee, B., et al.: Preventing use-after-free with dangling pointers nullification. In: NDSS (2015)","DOI":"10.14722\/ndss.2015.23238"},{"key":"13_CR23","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"403","DOI":"10.1007\/978-3-030-00470-5_19","volume-title":"Research in Attacks, Intrusions, and Defenses","author":"J Lettner","year":"2018","unstructured":"Lettner, J., Song, D., Park, T., Larsen, P., Volckaert, S., Franz, M.: PartiSan: fast and flexible sanitization via run-time partitioning. In: Bailey, M., Holz, T., Stamatogiannakis, M., Ioannidis, S. (eds.) RAID 2018. LNCS, vol. 11050, pp. 403\u2013422. Springer, Cham (2018). \n                      https:\/\/doi.org\/10.1007\/978-3-030-00470-5_19"},{"key":"13_CR24","unstructured":"Moerbeek, O.: A new malloc(3) for OpenBSD. In: EuroBSDCon (2009)"},{"key":"13_CR25","unstructured":"MWR. Isolated Heap & Friends: Object Allocation Hardening in Web Browsers (2014). \n                      https:\/\/labs.mwrinfosecurity.com\/blog\/isolated-heap-friends-object-allocation-hardening-in-web-browsers\/"},{"key":"13_CR26","doi-asserted-by":"crossref","unstructured":"Nagarakatte, S., Zhao, J., Martin, M.M., Zdancewic, S.: CETS: compiler enforced temporal safety for C. In: Proceedings of the 2010 International Symposium on Memory Management, ISMM 2010 (2010)","DOI":"10.1145\/1806651.1806657"},{"key":"13_CR27","doi-asserted-by":"crossref","unstructured":"Nagarakatte, S., Zhao, J., Martin, M.M., Zdancewic, S.: SoftBound: highly compatible and complete spatial memory safety for C. In: Proceedings of the 30th ACM SIGPLAN Conference on Programming Language Design and Implementation, PLDI 2009 (2009)","DOI":"10.1145\/1542476.1542504"},{"key":"13_CR28","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"177","DOI":"10.1007\/978-3-642-39235-1_11","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"N Nikiforakis","year":"2013","unstructured":"Nikiforakis, N., Piessens, F., Joosen, W.: HeapSentry: kernel-assisted protection against heap overflows. In: Rieck, K., Stewin, P., Seifert, J.-P. (eds.) DIMVA 2013. LNCS, vol. 7967, pp. 177\u2013196. Springer, Heidelberg (2013). \n                      https:\/\/doi.org\/10.1007\/978-3-642-39235-1_11"},{"key":"13_CR29","doi-asserted-by":"crossref","unstructured":"Novark, G., Berger, E.D.: DieHarder: securing the heap. In: ACM Conference on Computer and Communications Security (2010)","DOI":"10.1145\/1866307.1866371"},{"key":"13_CR30","unstructured":"OpenSSL. \n                      https:\/\/www.openssl.org\/"},{"key":"13_CR31","unstructured":"Page Heap. \n                      https:\/\/msdn.microsoft.com\/en-us\/library\/ms220938(v=vs.90).aspx"},{"key":"13_CR32","doi-asserted-by":"crossref","unstructured":"Pereira, F.M.Q., Berlin, D.: Wave propagation and deep propagation for pointer analysis. In: IEEE\/ACM International Symposium on Code Generation and Optimization (2009)","DOI":"10.1109\/CGO.2009.9"},{"key":"13_CR33","unstructured":"perf. \n                      https:\/\/perf.wiki.kernel.org"},{"key":"13_CR34","doi-asserted-by":"crossref","unstructured":"Qin, F., Wang, C., Li, Z., Kim, H.S., Zhou, Y., Wu, Y.: LIFT: a low-overhead practical information flow tracking system for detecting security attacks. In: IEEE\/ACM International Symposium on Microarchitecture (2006)","DOI":"10.1109\/MICRO.2006.29"},{"key":"13_CR35","unstructured":"SafeStack (2017). \n                      http:\/\/clang.llvm.org\/docs\/SafeStack.html"},{"key":"13_CR36","doi-asserted-by":"crossref","unstructured":"Schuster, F., Tendyck, T., Liebchen, C., Davi, L., Sadeghi, A.R., Holz, T.: Counterfeit object-oriented programming: on the difficulty of preventing code reuse attacks in C++ applications. In: IEEE Symposium on Security and Privacy (Oakland) (2015)","DOI":"10.1109\/SP.2015.51"},{"key":"13_CR37","unstructured":"Silvanovich, N.: Life After the Isolated Heap (2016). \n                      https:\/\/googleprojectzero.blogspot.com\/2016\/03\/lifeafter-isolated-heap.html"},{"key":"13_CR38","doi-asserted-by":"crossref","unstructured":"Slowinska, A., Bos, H.: Pointless tainting?: Evaluating the practicality of pointer tainting. In: ACM European Conference on Computer Systems (2009)","DOI":"10.1145\/1519065.1519073"},{"key":"13_CR39","unstructured":"SPEC (2006). \n                      https:\/\/www.spec.org\/cpu2006\/"},{"key":"13_CR40","doi-asserted-by":"crossref","unstructured":"Sui, Y., Xue, J.: SVF: interprocedural static value-flow analysis in LLVM. In: International Conference on Compiler Construction (2016)","DOI":"10.1145\/2892208.2892235"},{"key":"13_CR41","doi-asserted-by":"crossref","unstructured":"Szekeres, L., Payer, M., Wei, T., Song, D.: SoK: eternal war in memory. In: IEEE Symposium on Security and Privacy (Oakland) (2013)","DOI":"10.1109\/SP.2013.13"},{"key":"13_CR42","doi-asserted-by":"crossref","unstructured":"Wagner, J., Kuznetsov, V., Candea, G., Kinder, J.: High system-code security with low overhead. In: Proceedings of the 2015 IEEE Symposium on Security and Privacy, SP 2015, pp. 866\u2013879 (2015)","DOI":"10.1109\/SP.2015.58"},{"key":"13_CR43","doi-asserted-by":"crossref","unstructured":"Younan, Y.: FreeSentry: protecting against use-after-free vulnerabilities due to dangling pointers. In: Internet Society Symposium on Network and Distributed Systems Security (2015)","DOI":"10.14722\/ndss.2015.23190"}],"container-title":["Lecture Notes in Computer Science","Detection of Intrusions and Malware, and Vulnerability Assessment"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-22038-9_13","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,6,9]],"date-time":"2019-06-09T19:10:37Z","timestamp":1560107437000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-22038-9_13"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019]]},"ISBN":["9783030220372","9783030220389"],"references-count":43,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-22038-9_13","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2019]]},"assertion":[{"value":"6 June 2019","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"DIMVA","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Gothenburg","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Sweden","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2019","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19 June 2019","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"20 June 2019","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"16","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"dimva2019","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/www.dimva2019.org\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"dimca2019.hotcrp.com","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"80","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"23","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"29% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"6","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}}]}}