{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,2]],"date-time":"2026-07-02T15:56:34Z","timestamp":1783007794645,"version":"3.54.5"},"publisher-location":"Cham","reference-count":52,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783319205496","type":"print"},{"value":"9783319205502","type":"electronic"}],"license":[{"start":{"date-parts":[[2015,1,1]],"date-time":"2015-01-01T00:00:00Z","timestamp":1420070400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2015,1,1]],"date-time":"2015-01-01T00:00:00Z","timestamp":1420070400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2015]]},"DOI":"10.1007\/978-3-319-20550-2_8","type":"book-chapter","created":{"date-parts":[[2015,6,22]],"date-time":"2015-06-22T01:55:06Z","timestamp":1434938106000},"page":"144-164","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":74,"title":["Fine-Grained Control-Flow Integrity Through Binary Hardening"],"prefix":"10.1007","author":[{"given":"Mathias","family":"Payer","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Antonio","family":"Barresi","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Thomas R.","family":"Gross","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","published-online":{"date-parts":[[2015,6,23]]},"reference":[{"key":"8_CR1","doi-asserted-by":"crossref","unstructured":"Abadi, M., Budiu, M., Erlingsson, U., Ligatti, J.: Control-flow integrity. In: CCS 2005 (2005)","DOI":"10.1145\/1102120.1102165"},{"key":"8_CR2","doi-asserted-by":"crossref","unstructured":"Akritidis, P., Cadar, C., Raiciu, C., Costa, M., Castro, M.: Preventing memory error exploits with WIT. In: SP 2008 (2008)","DOI":"10.1109\/SP.2008.30"},{"key":"8_CR3","doi-asserted-by":"crossref","unstructured":"Bittau, A., Belay, A., Mashtizadeh, A., Mazieres, D., Boneh, D.: Hacking blind. In: SP 2014 (2014)","DOI":"10.1109\/SP.2014.22"},{"key":"8_CR4","doi-asserted-by":"crossref","unstructured":"Bletsch, T., Jiang, X., Freeh, V.: Mitigating code-reuse attacks with control-flow locking. In: ACSAC 2011 (2011)","DOI":"10.1145\/2076732.2076783"},{"key":"8_CR5","doi-asserted-by":"crossref","unstructured":"Bletsch, T., Jiang, X., Freeh, V.W., Liang, Z.: Jump-oriented programming: a new class of code-reuse attack. In: ASIACCS 2011 (2011)","DOI":"10.1145\/1966913.1966919"},{"key":"8_CR6","doi-asserted-by":"crossref","unstructured":"Bosman, E., Bos, H.: Framing signals - a return to portable shellcode. In: SP 2014 (2014)","DOI":"10.1109\/SP.2014.23"},{"key":"8_CR7","unstructured":"Bruening, D., Garnett, T., Amarasinghe, S.: An infrastructure for adaptive dynamic optimization. In: CGO 2003 (2003)"},{"key":"8_CR8","unstructured":"Carlini, N., Wagner, D.: ROP is still dangerous: breaking modern defenses. In: SSYM 2014 (2014)"},{"key":"8_CR9","doi-asserted-by":"crossref","unstructured":"Checkoway, S., Davi, L., Dmitrienko, A., Sadeghi, A.R., Shacham, H., Winandy, M.: Return-oriented programming without returns. In: CCS 2010 (2010)","DOI":"10.1145\/1866307.1866370"},{"key":"8_CR10","unstructured":"Chen, S., Xu, J., Sezer, E.C., Gauriar, P., Iyer, R.K.: Non-control-data attacks are realistic threats. In: SSYM 2005 (2005)"},{"key":"8_CR11","doi-asserted-by":"crossref","unstructured":"Crane, S., Liebchen, C., Homescu, A., Davi, L., Larsen, P., Sadeghi, A.R., Brunthaler, S., Franz, M.: Readactor: practical code randomization resilient to memory disclosure. In: SP 2015 (2015)","DOI":"10.1109\/SP.2015.52"},{"key":"8_CR12","doi-asserted-by":"crossref","unstructured":"Criswell, J., Dautenhahn, N., Adve, V.: KCoFI: complete control-flow integrity for commodity operating system kernels. In: SP 2014 (2014)","DOI":"10.1109\/SP.2014.26"},{"key":"8_CR13","unstructured":"Davi, L., Dmitrienko, R., Egele, M., Fischer, T., Holz, T., Hund, R., Nuernberger, S., Sadeghi, A.: MoCFI: a framework to mitigate control-flow attacks on smartphones. In: NDSS 2012 (2012)"},{"key":"8_CR14","unstructured":"Davi, L., Sadeghi, A.R., Lehmann, D., Monrose, F.: Stitching the gadgets: on the ineffectiveness of coarse-grained control-flow integrity protection. In: SSYM 2014 (2014)"},{"key":"8_CR15","unstructured":"Drepper, U.: How to write shared libraries, December 2010. http:\/\/www.akkadia.org\/drepper\/dsohowto.pdf"},{"key":"8_CR16","unstructured":"Erlingsson, \u00da., Abadi, M., Vrable, M., Budiu, M., Necula, G.C.: XFI: software guards for system address spaces. In: OSDI 2006 (2006)"},{"key":"8_CR17","doi-asserted-by":"crossref","unstructured":"G\u00f6kta\u015f, E., Athanasopoulos, E., Bos, H., Portokalidis, G.: Out of control: overcoming control-flow integrity. In: SP 2014 (2014)","DOI":"10.1109\/SP.2014.43"},{"key":"8_CR18","unstructured":"Hiroaki, E., Kunikazu, Y.: ProPolice: improved stack-smashing attack detection. IPSJ SIG Notes pp. 181\u2013188 (2001)"},{"key":"8_CR19","unstructured":"HTTP Archive: Http archive - interesting stats - average sizes of web sites and objects (2014). http:\/\/httparchive.org\/interesting.php?a=All&l=Mar%201%202014"},{"key":"8_CR20","unstructured":"Jim, T., Morrisett, J.G., Grossman, D., Hicks, M.W., Cheney, J., Wang, Y.: Cyclone: a safe dialect of C. In: ATC 2002 (2002)"},{"key":"8_CR21","unstructured":"Kiriansky, V., Bruening, D., Amarasinghe, S.P.: Secure execution via program shepherding. In: SSYM 2002 (2002)"},{"key":"8_CR22","unstructured":"Kuzentsov, V., Payer, M., Szekeres, L., Candea, G., Song, D., Sekar, R.: Code pointer integrity. In: OSDI (2014)"},{"key":"8_CR23","doi-asserted-by":"crossref","unstructured":"Larsen, P., Homescu, A., Brunthaler, S., Franz, M.: SoK: automated software diversity. In: SP 2014 (2014)","DOI":"10.1109\/SP.2014.25"},{"key":"8_CR24","unstructured":"Le, L.: Exploiting nginx chunked overflow bug, the undisclosed attack vector (CVE-2013-2028) (2013)"},{"key":"8_CR25","unstructured":"Luk, C.K., Cohn, R., Muth, R., Patil, H., Klauser, A., Lowney, G., Wallace, S., Reddi, V.J., Hazelwood, K.: Pin: building customized program analysis tools with dynamic instrumentation. In: PLDI 2005 (2005)"},{"key":"8_CR26","unstructured":"MacManus, G., Saelo, H.: Metasploit module nginx chunked size for CVE-2013-2028 (2013). http:\/\/www.rapid7.com\/db\/modules\/exploit\/linux\/http\/nginx_chunked_size"},{"key":"8_CR27","doi-asserted-by":"crossref","unstructured":"Mohan, V., Larsen, P., Brunthaler, S., Hamlen, K.W., Franz, M.: Opaque control-flow integrity. In: NDSS 2015 (2015)","DOI":"10.14722\/ndss.2015.23271"},{"key":"8_CR28","doi-asserted-by":"crossref","unstructured":"Nagarakatte, S., Zhao, J., Martin, M.M., Zdancewic, S.: SoftBound: highly compatible and complete spatial memory safety for C. In: PLDI 2009 (2009)","DOI":"10.1145\/1542476.1542504"},{"key":"8_CR29","doi-asserted-by":"crossref","unstructured":"Nagarakatte, S., Zhao, J., Martin, M.M., Zdancewic, S.: CETS: compiler enforced temporal safety for C. In: ISMM 2010 (2010)","DOI":"10.1145\/1806651.1806657"},{"issue":"3","key":"8_CR30","doi-asserted-by":"publisher","first-page":"477","DOI":"10.1145\/1065887.1065892","volume":"27","author":"G Necula","year":"2005","unstructured":"Necula, G., Condit, J., Harren, M., McPeak, S., Weimer, W.: CCured: type-safe retrofitting of legacy software. ACM Trans. Program. Lang. Syst. (TOPLAS) 27(3), 477\u2013526 (2005)","journal-title":"ACM Trans. Program. Lang. Syst. (TOPLAS)"},{"key":"8_CR31","unstructured":"Nergal: the advanced return-into-lib(c) exploits. Phrack 11(58), November 2007. http:\/\/phrack.com\/issues.html?issue=67&id=8"},{"key":"8_CR32","doi-asserted-by":"crossref","unstructured":"Nethercote, N., Seward, J.: Valgrind: a framework for heavyweight dynamic binary instrumentation. In: PLDI 2007 (2007)","DOI":"10.1145\/1250734.1250746"},{"key":"8_CR33","doi-asserted-by":"crossref","unstructured":"Niu, B., Tan, G.: Monitor integrity protection with space efficiency and separate compilation. In: CCS 2013 (2013)","DOI":"10.1145\/2508859.2516649"},{"key":"8_CR34","doi-asserted-by":"crossref","unstructured":"Niu, B., Tan, G.: Modular control-flow integrity. In: PLDI 2014 (2014)","DOI":"10.1145\/2594291.2594295"},{"key":"8_CR35","unstructured":"PaX-Team: PaX ASLR (Address Space Layout Randomization) (2003). http:\/\/pax.grsecurity.net\/docs\/aslr.txt"},{"key":"8_CR36","doi-asserted-by":"crossref","unstructured":"Payer, M., Gross, T.R.: Fine-grained user-space security through virtualization. In: VEE 2011 (2011)","DOI":"10.1145\/1952682.1952703"},{"key":"8_CR37","doi-asserted-by":"crossref","unstructured":"Payer, M., Hartmann, T., Gross, T.R.: Safe loading - a foundation for secure execution of untrusted programs. In: SP 2012 (2012)","DOI":"10.1109\/SP.2012.11"},{"key":"8_CR38","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"194","DOI":"10.1007\/978-3-642-22424-9_12","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"P Philippaerts","year":"2011","unstructured":"Philippaerts, P., Younan, Y., Muylle, S., Piessens, F., Lachmund, S., Walter, T.: Code pointer masking: hardening applications against code injection attacks. In: Holz, T., Bos, H. (eds.) DIMVA 2011. LNCS, vol. 6739, pp. 194\u2013213. Springer, Heidelberg (2011)"},{"key":"8_CR39","doi-asserted-by":"publisher","first-page":"20","DOI":"10.1109\/MSP.2004.36","volume":"2","author":"J Pincus","year":"2004","unstructured":"Pincus, J., Baker, B.: Beyond stack smashing: recent advances in exploiting buffer overruns. IEEE Secur. Priv. 2, 20\u201327 (2004)","journal-title":"IEEE Secur. Priv."},{"key":"8_CR40","unstructured":"Schuster, F., Tendyck, T., Liebchen, C., Davi, L., Sadeghi, A.R., Holz, T.: Counterfeit object-oriented programming. In: SP 2015 (2015)"},{"key":"8_CR41","unstructured":"SCO: System V Application Binary Interface, Intel386 Architecture Processor Supplement (1996). http:\/\/www.sco.com\/developers\/devspecs\/abi386-4.pdf"},{"key":"8_CR42","doi-asserted-by":"crossref","unstructured":"Seibert, J., Okhravi, H., Soederstroem, E.: Information leaks without memory disclosures: remote side channel attacks on diversified code. In: CCS (2014)","DOI":"10.1145\/2660267.2660309"},{"key":"8_CR43","doi-asserted-by":"crossref","unstructured":"Shacham, H.: The geometry of innocent flesh on the bone: return-into-libc without function calls (on the x86). In: CCS 2007 (2007)","DOI":"10.1145\/1315245.1315313"},{"key":"8_CR44","doi-asserted-by":"crossref","unstructured":"Szekeres, L., Payer, M., Wei, T., Song, D.: SoK: eternal war in memory. In: SP 2013 (2013)","DOI":"10.1109\/SP.2013.13"},{"key":"8_CR45","unstructured":"Tice, C., Roeder, T., Collingbourne, P., Checkoway, S., Erlingsson, \u00da., Lozano, L., Pike, G.: Enforcing forward-edge control-flow integrity in GCC & LLVM. In: SSYM 2014 (2014)"},{"key":"8_CR46","unstructured":"van de Ven, A., Molnar, I.: Exec shield (2004). https:\/\/www.redhat.com\/f\/pdf\/rhel\/WHP0006US_Execshield.pdf"},{"key":"8_CR47","doi-asserted-by":"crossref","unstructured":"Wang, Z., Jiang, X.: Hypersafe: a lightweight approach to provide lifetime hypervisor control-flow integrity. In: SP 2010 (2010)","DOI":"10.1109\/SP.2010.30"},{"key":"8_CR48","unstructured":"Xia, Y., Liu, Y., Chen, H., Zang, B.: CFIMon: detecting violation of vontrol flow integrity using performance counters. In: DSN 2012 (2012)"},{"key":"8_CR49","unstructured":"Zeng, B., Tan, G., Erlingsson, U.: Strato: a retargetable framework for low-level inlined-reference monitors. In: SSYM 2013 (2013)"},{"key":"8_CR50","doi-asserted-by":"crossref","unstructured":"Zhang, C., Wei, T., Chen, Z., Duan, L., McCamant, S., Szekeres, L.: Protecting function pointers in binary. In: ASIACCS 2013 (2013)","DOI":"10.1145\/2484313.2484376"},{"key":"8_CR51","unstructured":"Zhang, C., Wei, T., Chen, Z., Duan, L., Szekeres, L., McCamant, S., Song, D., Zou, W.: Practical control flow integrity and randomization for binary executables. In: SP 2013 (2013)"},{"key":"8_CR52","unstructured":"Zhang, M., Sekar, R.: Control flow integrity for COTS binaries. In: SSYM 2013 (2013)"}],"container-title":["Lecture Notes in Computer Science","Detection of Intrusions and Malware, and Vulnerability Assessment"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-20550-2_8","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,2,21]],"date-time":"2023-02-21T02:03:00Z","timestamp":1676944980000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-319-20550-2_8"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015]]},"ISBN":["9783319205496","9783319205502"],"references-count":52,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-20550-2_8","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2015]]},"assertion":[{"value":"23 June 2015","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}}]}}