{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,26]],"date-time":"2025-03-26T18:38:51Z","timestamp":1743014331805,"version":"3.40.3"},"publisher-location":"Cham","reference-count":26,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319694702"},{"type":"electronic","value":"9783319694719"}],"license":[{"start":{"date-parts":[[2017,1,1]],"date-time":"2017-01-01T00:00:00Z","timestamp":1483228800000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2017]]},"DOI":"10.1007\/978-3-319-69471-9_18","type":"book-chapter","created":{"date-parts":[[2017,10,20]],"date-time":"2017-10-20T14:03:44Z","timestamp":1508508224000},"page":"236-247","source":"Crossref","is-referenced-by-count":2,"title":["An Online Approach to Defeating Return-Oriented-Programming Attacks"],"prefix":"10.1007","author":[{"given":"Donghai","family":"Tian","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Xiaoqi","family":"Jia","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Li","family":"Zhan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Changzhen","family":"Hu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jingfeng","family":"Xue","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2017,10,21]]},"reference":[{"key":"18_CR1","doi-asserted-by":"crossref","first-page":"3693","DOI":"10.1109\/JSEN.2013.2266116","volume":"13","author":"X Yao","year":"2013","unstructured":"Yao, X., Han, X., Du, X., Zhou, X.: A lightweight multicast authentication mechanism for small scale IoT applications. IEEE Sens. J. 13, 3693\u20133701 (2013)","journal-title":"IEEE Sens. J."},{"key":"18_CR2","unstructured":"Metasploit (2014). http:\/\/www.metasploit.com\/"},{"key":"18_CR3","doi-asserted-by":"crossref","unstructured":"Shacham, H.: The geometry of innocent flesh on the bone. In: ACM Conference on Computer and Communications Security, CCS 2007, Alexandria, Virginia, USA, pp. 552\u2013561, October 2007","DOI":"10.1145\/1315245.1315313"},{"key":"18_CR4","doi-asserted-by":"crossref","unstructured":"Luk, C.K., Cohn, R., Muth, R., Patil, H., Klauser, A., Lowney, G., Wallace, S., Reddi, V.J., Hazelwood, K.: Pin: building customized program analysis tools with dynamic instrumentation. In: Proceedings of the ACM SIGPLAN Conference on Programming Language Design and Implementation (PLDI), vol. 40(6), pp. 190\u2013200 (2005)","DOI":"10.1145\/1065010.1065034"},{"key":"18_CR5","unstructured":"Intel corp. intel 64 and ia-32 architectures software developer\u2019s manuals (2014). http:\/\/www.intel.com\/Assets\/PDF\/manual\/253669.pdf"},{"key":"18_CR6","unstructured":"Longld. payload already inside: Data resue for ROP exploits (2010). https:\/\/media.blackhat.com\/bh-us-10\/whitepapers\/Le\/BlackHat-USA-2010-Le-Paper-Payload-already-inside-data-reuse-for-ROP-exploits-wp.pdf"},{"key":"18_CR7","unstructured":"The exploit database (2014). http:\/\/www.exploit-db.com\/"},{"key":"18_CR8","doi-asserted-by":"publisher","unstructured":"Davi, L., Sadeghi, A.R., Winandy, M.: Ropdefender: a detection tool to defend against return-oriented programming attacks. In: ACM Symposium on Information, Computer and Communications Security, ASIACCS 2011, Hong Kong, China, pp. 40\u201351, March 2011. doi: 10.1145\/1966913.1966920","DOI":"10.1145\/1966913.1966920"},{"key":"18_CR9","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"163","DOI":"10.1007\/978-3-642-10772-6_13","volume-title":"Information Systems Security","author":"P Chen","year":"2009","unstructured":"Chen, P., Xiao, H., Shen, X., Yin, X., Mao, B., Xie, L.: DROP: detecting return-oriented programming malicious code. In: Prakash, A., Sen Gupta, I. (eds.) ICISS 2009. LNCS, vol. 5905, pp. 163\u2013177. Springer, Heidelberg (2009). doi: 10.1007\/978-3-642-10772-6_13"},{"issue":"4","key":"18_CR10","first-page":"122","volume":"38","author":"H Han","year":"2012","unstructured":"Han, H., Mao, B., Xie, L.: Dynamic runtime detection system for return-oriented programming attack. Comput. Eng. 38(4), 122\u2013125 (2012)","journal-title":"Comput. Eng."},{"key":"18_CR11","doi-asserted-by":"publisher","unstructured":"Abadi, M., Budiu, M., Erlingsson, I., Ligatti, J.: Control-flow integrity. In: ACM Conference on Computer and Communications Security, CCS 2005, Alexandria, VA, USA, pp. 340\u2013353, November 2005. doi: 10.1145\/1102120.1102165","DOI":"10.1145\/1102120.1102165"},{"key":"18_CR12","doi-asserted-by":"publisher","unstructured":"Bletsch, T., Jiang, X., Freeh, V.: Mitigating code-reuse attacks with control-flow locking. In: Twenty-Seventh Computer Security Applications Conference, ACSAC 2011, Orlando, FL, USA, pp. 353\u2013362, 5\u20139 December 2011. doi: 10.1145\/2076732.2076783","DOI":"10.1145\/2076732.2076783"},{"key":"18_CR13","doi-asserted-by":"crossref","unstructured":"Onarlioglu, K., Bilge, L., Lanzi, A., Balzarotti, D., Kirda, E.: G-free: defeating return-oriented programming through gadget-less binaries. In: Proceedings of the 26th Annual Computer Security Applications Conference (ACSAC), pp. 49\u201358 (2010)","DOI":"10.1145\/1920261.1920269"},{"key":"18_CR14","doi-asserted-by":"publisher","unstructured":"Zhang, C., Wei, T., Chen, Z., Duan, L., Szekeres, L., Mccamant, S., Song, D., Zou, W.: Practical control flow integrity and randomization for binary executables. In: 34th IEEE Symposium on Security & Privacy, Oakland, pp. 559\u2013573 (2013). doi: 10.1109\/sp.2013.44","DOI":"10.1109\/sp.2013.44"},{"key":"18_CR15","doi-asserted-by":"publisher","unstructured":"Zhang, M., Sekar, R.: Control flow integrity for cots binaries. In: USENIX Conference on Security, pp. 337\u2013352 (2013). doi: 10.1145\/2818000.2818016","DOI":"10.1145\/2818000.2818016"},{"key":"18_CR16","unstructured":"Bhatkar, S., Sekar, R., Duvarney, D.C.: Efficient techniques for comprehensive protection from memory error exploits. In: Proceedings of the 14th USENIX Security Symposium, p. 17 (2005)"},{"key":"18_CR17","doi-asserted-by":"publisher","unstructured":"Wartell, R., Mohan, V., Hamlen, K.W., Lin, Z.: Binary stirring: self-randomizing instruction addresses of legacy x86 binary code. In: Proceedings of the 19th ACM Conference on Computer and Communications Security (CCS), pp. 157\u2013168 (2012). doi: 10.1145\/2382196.2382216","DOI":"10.1145\/2382196.2382216"},{"key":"18_CR18","doi-asserted-by":"crossref","unstructured":"Barrantes, E.G., Ackley, D.H., Palmer, T.S., Stefanovic, D., Zovi, D.D.: Randomized instruction set emulation to disrupt binary code injection attacks. In: ACM Conference on Computer and Communications Security, CCS 2003, Washington, DC, USA, pp. 281\u2013289, October 2003","DOI":"10.1145\/948109.948147"},{"key":"18_CR19","doi-asserted-by":"crossref","unstructured":"Kc, G.S., Keromytis, A.D., Prevelakis, V.: Countering code-injection attacks with instruction-set randomization. In: ACM Conference on Computer and Communications Security, pp. 272\u2013280 (2003)","DOI":"10.1145\/948109.948146"},{"key":"18_CR20","unstructured":"Backes, M., Rnberger, S.: Oxymoron: making fine-grained memory randomization practical by allowing code sharing. In: Proceedings of the 23rd USENIX Security Symposium, pp. 433\u2013447 (2014)"},{"key":"18_CR21","unstructured":"Oikonomopoulos, A., Athanasopoulos, E., Bos, H., Giuffrida, C.: Poking holes in information hiding. In: Proceedings of the 25th USENIX Security Symposium (2016)"},{"key":"18_CR22","doi-asserted-by":"publisher","unstructured":"Xia, Y., Liu, Y., Chen, H., Zang, B.: Cfimon: detecting violation of control flow integrity using performance counters. In: Proceedings of the 42nd Annual IEEE\/IFIP International Conference on Dependable Systems and Networks (DSN), pp. 1\u201312 (2012). doi: 10.1109\/dsn.2012.6263958","DOI":"10.1109\/dsn.2012.6263958"},{"key":"18_CR23","unstructured":"Pappas, V., Polychronakis, M., Keromytis, A.D.: Transparent ROP exploit mitigation using indirect branch tracing. In: Proceedings of the 22nd USENIX Security Symposium, pp. 447\u2013462 (2013)"},{"key":"18_CR24","doi-asserted-by":"publisher","unstructured":"Cheng, Y., Zhou, Z., Yu, M., Ding, X., Deng, R.H.: Ropecker: a generic and practical approach for defending against rop attacks. In: Proceedings of the 21st Annual Network and Distributed System Security Symposium (NDSS) (2014). doi: 10.14722\/ndss.2014.23156","DOI":"10.14722\/ndss.2014.23156"},{"issue":"10","key":"18_CR25","doi-asserted-by":"crossref","first-page":"1236","DOI":"10.1002\/sec.693","volume":"6","author":"X Jia","year":"2013","unstructured":"Jia, X., Wang, R., Jiang, J., Zhang, S., Liu, P.: Defending return-oriented programming based on virtualization techniques. Secur. Commun. Netw. (SCN) 6(10), 1236\u20131249 (2013)","journal-title":"Secur. Commun. Netw. (SCN)"},{"key":"18_CR26","doi-asserted-by":"publisher","unstructured":"Yutao, L., Peitao, S., Xinran, W., Haibo, C., Binyu, Z., Haibing, G.: Transparent and efficient CFI enforcement with intel processor trace. In: IEEE Symposium on High Performance Computer Architecture (2017). doi: 10.1109\/hpca.2017.18","DOI":"10.1109\/hpca.2017.18"}],"container-title":["Lecture Notes in Computer Science","Cyberspace Safety and Security"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-69471-9_18","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,6,27]],"date-time":"2024-06-27T22:39:01Z","timestamp":1719527941000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-69471-9_18"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017]]},"ISBN":["9783319694702","9783319694719"],"references-count":26,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-69471-9_18","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2017]]}}}