{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,2]],"date-time":"2025-10-02T05:58:50Z","timestamp":1759384730380},"publisher-location":"Cham","reference-count":24,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319647005"},{"type":"electronic","value":"9783319647012"}],"license":[{"start":{"date-parts":[[2017,1,1]],"date-time":"2017-01-01T00:00:00Z","timestamp":1483228800000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2017]]},"DOI":"10.1007\/978-3-319-64701-2_17","type":"book-chapter","created":{"date-parts":[[2017,7,25]],"date-time":"2017-07-25T04:56:55Z","timestamp":1500958615000},"page":"233-247","source":"Crossref","is-referenced-by-count":5,"title":["Randomization Can\u2019t Stop BPF JIT Spray"],"prefix":"10.1007","author":[{"given":"Elena","family":"Reshetova","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Filippo","family":"Bonazzi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"N.","family":"Asokan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2017,7,26]]},"reference":[{"key":"17_CR1","unstructured":"A detailed description of the Data Execution Prevention (DEP) feature (2016). support.microsoft.com\/en-us\/kb\/875352"},{"key":"17_CR2","unstructured":"Intel $$\\textregistered $$ 64 and IA-32 Architectures Software Developer\u2019s Manual (2016). www.intel.com\/content\/dam\/www\/public\/us\/en\/documents\/manuals\/64-ia-32-architectures-software-developer-manual-325462.pdf"},{"key":"17_CR3","unstructured":"SECure COMPuting with filters (2016). www.kernel.org\/doc\/Documentation\/prctl\/seccomp_filter.txt"},{"key":"17_CR4","doi-asserted-by":"crossref","unstructured":"Athanasakis, M., et al.: The Devil is in the Constants: Bypassing Defenses in Browser JIT Engines. In: NDSS (2015)","DOI":"10.14722\/ndss.2015.23209"},{"key":"17_CR5","unstructured":"Bania, P.: JIT spraying and mitigations. arXiv preprint (2010). arXiv:1009.1038"},{"key":"17_CR6","unstructured":"Blazakis, D.: Interpreter Exploitation: Pointer Inference and JIT Spraying (2016). www.semantiscope.com\/research\/BHDC2010\/BHDC-2010-Paper.pdf"},{"key":"17_CR7","unstructured":"Borkmann, D.: On getting tc classifier fully programmable with cls_bpf (2016). www.netdevconf.org\/1.1\/proceedings\/papers\/On-getting-tc-classifier-fully-programmable-with-cls-bpf.pdf"},{"key":"17_CR8","doi-asserted-by":"crossref","unstructured":"Chen, P., Fang, Y., Mao, B., Xie, L.: JITDefender: a defense against JIT spraying attacks. In: IFIP, pp. 142\u2013153 (2011)","DOI":"10.1007\/978-3-642-21424-0_12"},{"key":"17_CR9","unstructured":"Cook, C.: Status of the Kernel Self Protection Project (2016). outflux.net\/slides\/2016\/lss\/kspp.pdf"},{"key":"17_CR10","unstructured":"Corbet, J.: A JIT for packet filters (2012). lwn.net\/Articles\/437981"},{"key":"17_CR11","unstructured":"Corbet, J.: The kernel connection multiplexer (2015). lwn.net\/Articles\/657999\/"},{"key":"17_CR12","unstructured":"Edge, J.: \u201cStrong\u201d stack protection for GCC (2014). lwn.net\/Articles\/584225\/"},{"key":"17_CR13","unstructured":"Gorman, M.: Understanding the Linux virtual memory manager (2004)"},{"key":"17_CR14","doi-asserted-by":"crossref","unstructured":"Homescu, A., Brunthaler, S., Larsen, P., Franz, M.: Librando: transparent code randomization for just-in-time compilers. In: CCS, pp. 993\u20131004 (2013)","DOI":"10.1145\/2508859.2516675"},{"key":"17_CR15","doi-asserted-by":"crossref","unstructured":"Jang, Y., Lee, S., Ki, T.: Breaking Kernel Address Space Layout Randomization with Intel TSX. In: CCS, pp. 380\u2013392 (2016)","DOI":"10.1145\/2976749.2978321"},{"key":"17_CR16","unstructured":"Jangda, A., Mishra, M., Baudry, B.: libmask: protecting browser JIT engines from the devil in the constants. In: PST (2016)"},{"key":"17_CR17","unstructured":"McAllister, K.: Attacking hardened Linux systems with kernel JIT spraying (2012). mainisusuallyafunction.blogspot.de\/2012\/11\/attacking-hardened-linux-systems-with.html"},{"key":"17_CR18","unstructured":"McCanne, S., Jacobson, V.: The BSD packet filter: a new architecture for user-level packet capture. In: USENIX Winter, vol. 46 (1993)"},{"key":"17_CR19","doi-asserted-by":"crossref","unstructured":"Mogul, J.: Efficient use of workstations for passive monitoring of local area networks, vol. 20. ACM (1990)","DOI":"10.1145\/99508.99562"},{"key":"17_CR20","doi-asserted-by":"crossref","unstructured":"Mogul, J., Rashid, R., Accetta, M.: The packer filter: an efficient mechanism for user-level network code, vol. 21. ACM (1987)","DOI":"10.1145\/41457.37505"},{"key":"17_CR21","unstructured":"Schulist, J., et al.: Linux Socket Filtering aka Berkeley Packet Filter (BPF) (2016). www.kernel.org\/doc\/Documentation\/networking\/filter.txt"},{"key":"17_CR22","doi-asserted-by":"crossref","unstructured":"Song, C., Zhang, C., Wang, T., Lee, W., Melski, D.: Exploiting and Protecting Dynamic Code Generation. In: NDSS (2015)","DOI":"10.14722\/ndss.2015.23233"},{"key":"17_CR23","unstructured":"Starovoitov, A.: Tracing: attach eBPF programs to kprobes (2015). lwn.net\/Articles\/636976\/"},{"key":"17_CR24","unstructured":"PaX Team: PaX address space layout randomization (ASLR) (2003)"}],"container-title":["Lecture Notes in Computer Science","Network and System Security"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-64701-2_17","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,10,1]],"date-time":"2019-10-01T11:13:20Z","timestamp":1569928400000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-64701-2_17"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017]]},"ISBN":["9783319647005","9783319647012"],"references-count":24,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-64701-2_17","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2017]]}}}