{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,7]],"date-time":"2024-09-07T20:22:38Z","timestamp":1725740558686},"publisher-location":"Berlin, Heidelberg","reference-count":41,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642392344"},{"type":"electronic","value":"9783642392351"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2013]]},"DOI":"10.1007\/978-3-642-39235-1_11","type":"book-chapter","created":{"date-parts":[[2013,7,13]],"date-time":"2013-07-13T00:07:36Z","timestamp":1373674056000},"page":"177-196","source":"Crossref","is-referenced-by-count":14,"title":["HeapSentry: Kernel-Assisted Protection against Heap Overflows"],"prefix":"10.1007","author":[{"given":"Nick","family":"Nikiforakis","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Frank","family":"Piessens","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Wouter","family":"Joosen","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"11_CR1","unstructured":"Adobe: Security bulletins and advisories, \n \n http:\/\/www.adobe.com\/support\/security\/"},{"key":"11_CR2","unstructured":"Akritidis, P., Costa, M., Castro, M., Hand, S.: Baggy bounds checking: An efficient and backwards-compatible defense against out-of-bounds errors. In: Proceedings of the 18th USENIX Security Symposium, Montreal, QC (August 2009)"},{"key":"11_CR3","unstructured":"Aleph1: Smashing the stack for fun and profit. Phrack, 49 (1996)"},{"key":"11_CR4","unstructured":"Anley, C., Heasman, J., Linder, F.F., Richarte, G.: The Shellcoder\u2019s Handbook: Discovering and Exploiting Security Holes, 2nd edn. Wiley Publishing (2007)"},{"key":"11_CR5","unstructured":"Berger, E.D.: Heapshield: Library-based heap overflow protection for free. UMass CS TR 06-28 (2006)"},{"key":"11_CR6","doi-asserted-by":"crossref","unstructured":"Berger, E.D., Zorn, B.G.: Diehard: Probabilistic memory safety for unsafe languages. In: Proceedings of 27th Conference on Programming Language Design and Implementation (June 2006)","DOI":"10.1145\/1133981.1134000"},{"key":"11_CR7","doi-asserted-by":"crossref","unstructured":"Bernaschi, M., Gabrielli, E., Mancini, L.V.: Operating system enhancements to prevent the misuse of system calls. In: Proceedings of the 7th Conference on Computer and Communications Security (2000)","DOI":"10.1145\/352600.352624"},{"key":"11_CR8","unstructured":"Bhatkar, S., DuVarney, D.C., Sekar, R.: Address obfuscation: An efficient approach to combat a broad range of memory error exploits. In: Proceedings of the 12th USENIX Security Symposium, Washington, D.C., pp. 105\u2013120 (August 2003)"},{"key":"11_CR9","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-540-70542-0_1","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"S. Bhatkar","year":"2008","unstructured":"Bhatkar, S., Sekar, R.: Data space randomization. In: Zamboni, D. (ed.) DIMVA 2008. LNCS, vol.\u00a05137, pp. 1\u201322. Springer, Heidelberg (2008)"},{"key":"11_CR10","doi-asserted-by":"crossref","unstructured":"Checkoway, S., Davi, L., Dmitrienko, A., Sadeghi, A.-R., Shacham, H., Winandy, M.: Return-oriented programming without returns. In: Proceedings of CCS 2010. ACM Press (2010)","DOI":"10.1145\/1866307.1866370"},{"key":"11_CR11","unstructured":"Chen, S., Xu, J., Sezer, E.C., Gauriar, P., Iyer, R.K.: Non-control-data attacks are realistic threats. In: Proceedings of the 14th USENIX Security Symposium, Baltimore, MD (August 2005)"},{"key":"11_CR12","unstructured":"Conover, M.: w00w00 on heap overflows, \n \n http:\/\/www.w00w00.org\/files\/articles\/heaptut.txt"},{"key":"11_CR13","unstructured":"Cowan, C., Pu, C., Maier, D., Hinton, H., Walpole, J., Bakke, P., Beattie, S., Grier, A., Wagle, P., Zhang, Q.: StackGuard: Automatic adaptive detection and prevention of buffer-overflow attacks. In: Proceedings of the 7th USENIX Security Symposium (1998)"},{"key":"11_CR14","unstructured":"Designer, S.: lpr LIBC RETURN exploit, \n \n http:\/\/insecure.org\/sploits\/linux.libc.return.lpr.sploit.html"},{"key":"11_CR15","doi-asserted-by":"crossref","unstructured":"Dhurjati, D., Adve, V.: Backwards-compatible array bounds checking for C with very low overhead. In: Proceeding of the 28th International Conference on Software Engineering, Shanghai, China (2006)","DOI":"10.1145\/1134285.1134309"},{"key":"11_CR16","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"88","DOI":"10.1007\/978-3-642-02918-9_6","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"M. Egele","year":"2009","unstructured":"Egele, M., Wurzinger, P., Kruegel, C., Kirda, E.: Defending browsers against drive-by downloads: Mitigating heap-spraying code injection attacks. In: Flegel, U., Bruschi, D. (eds.) DIMVA 2009. LNCS, vol.\u00a05587, pp. 88\u2013106. Springer, Heidelberg (2009)"},{"key":"11_CR17","doi-asserted-by":"crossref","unstructured":"Gal, A., Eich, B., Shaver, M., Anderson, D., Mandelin, D., Haghighat, M.R., Kaplan, B., Hoare, G., Zbarsky, B., Orendorff, J., Ruderman, J., Smith, E.W., Reitmaier, R., Bebenita, M., Chang, M., Franz, M.: Trace-based just-in-time type specialization for dynamic languages. In: ACM Conference on Programming Language Design and Implementation (2009)","DOI":"10.1145\/1542476.1542528"},{"key":"11_CR18","unstructured":"IBM: Gcc extension for protecting applications from stack-smashing attacks, \n \n http:\/\/www.trl.ibm.com\/projects\/security\/ssp\/"},{"key":"11_CR19","unstructured":"Jones, R.W.M., Kelly, P.H.J.: Backwards-compatible bounds checking for arrays and pointers in C programs. In: Proceedings of the 3rd International Workshop on Automatic Debugging, Link\u00f6ping, Sweden, pp. 13\u201326 (1997)"},{"key":"11_CR20","unstructured":"Kc, G.S., Keromytis, A.D.: e-NeXSh: Achieving an effectively non-executable stack and heap via system-call policing. In: Annual Computer Security Applictions Conference (2005)"},{"key":"11_CR21","unstructured":"Keniston, J., Panchamukhi, P.S., Hiramatsu, M.: Kernel probes (kprobes)"},{"key":"11_CR22","unstructured":"Lin, C., Rajagopalan, M., Baker, S., Collberg, C., Debray, S., Hartman, J.: Protecting against unexpected system calls. In: Proceedings of the 14th USENIX Security Symposium, Baltimore, Maryland. USENIX Association (August 2005)"},{"key":"11_CR23","doi-asserted-by":"crossref","unstructured":"Lvin, V.B., Novark, G., Berger, E.D., Zorn, B.G.: Archipelago: trading address space for reliability and security. In: Proceedings of the 13th International Conference on Architectural Support for Programming Languages and Operating Systems, ASPLOS XIII. ACM (2008)","DOI":"10.1145\/1346281.1346296"},{"key":"11_CR24","unstructured":"Microsoft: Security advisories, \n \n http:\/\/www.microsoft.com\/technet\/security\/advisory\/"},{"key":"11_CR25","doi-asserted-by":"publisher","first-page":"573","DOI":"10.1145\/1866307.1866371","volume-title":"Proceedings of the 17th ACM Conference on Computer and Communications Security, CCS 2010","author":"G. Novark","year":"2010","unstructured":"Novark, G., Berger, E.D.: Dieharder: securing the heap. In: Proceedings of the 17th ACM Conference on Computer and Communications Security, CCS 2010, pp. 573\u2013584. ACM, New York (2010)"},{"key":"11_CR26","unstructured":"National Vulnerability Database, \n \n http:\/\/nvd.nist.gov"},{"key":"11_CR27","unstructured":"PaX: Documentation for the PaX project, \n \n http:\/\/pax.grsecurity.net\/"},{"key":"11_CR28","unstructured":"Payer, M.: I control your code. In: Proceedings of the 27th Chaos Communication Congress (27c3) (2010)"},{"key":"11_CR29","unstructured":"Provos, N.: Improving host security with system call policies. In: Proceedings of the 12th USENIX Security Symposium, Washington, D.C. (August 2003)"},{"key":"11_CR30","unstructured":"Rivner, U.: Anatomy of the rsa attack, \n \n http:\/\/blogs.rsa.com\/rivner\/anatomy-of-an-attack\/"},{"key":"11_CR31","unstructured":"Robertson, W., Kruegel, C., Mutz, D., Valeur, F.: Run-time detection of heap-based overflows. In: Proceedings of the 17th Large Installation Systems Administrators Conference, San Diego, CA, pp. 51\u201360 (October 2003)"},{"key":"11_CR32","doi-asserted-by":"crossref","unstructured":"Roglia, G.F., Martignoni, L., Paleari, R., Bruschi, D.: Surgically returning to randomized lib(c). In: 25th Annual Computer Security Applications Conference (2009)","DOI":"10.1109\/ACSAC.2009.16"},{"key":"11_CR33","doi-asserted-by":"crossref","unstructured":"Shacham, H.: The geometry of innocent flesh on the bone: Return-into-libc without function calls (on the x86). In: Proceedings of the 14th ACM Conference on Computer and Communications Security (2007)","DOI":"10.1145\/1315245.1315313"},{"key":"11_CR34","unstructured":"Solar Designer: Non-executable user stack, \n \n http:\/\/www.openwall.com\/linux\/"},{"key":"11_CR35","doi-asserted-by":"crossref","unstructured":"Spafford, E.H.: The internet worm program: An analysis. Computer Communication Review\u00a019 (1988)","DOI":"10.1145\/66093.66095"},{"key":"11_CR36","unstructured":"Strace(1): trace system calls\/signals, \n \n http:\/\/linux.die.net\/man\/1\/strace"},{"key":"11_CR37","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"156","DOI":"10.1007\/978-3-642-17714-9_12","volume-title":"Information Systems Security","author":"S. Acker Van","year":"2010","unstructured":"Van Acker, S., Nikiforakis, N., Philippaerts, P., Younan, Y., Piessens, F.: ValueGuard: Protection of Native Applications against Data-Only Buffer Overflows. In: Jha, S., Mathuria, A. (eds.) ICISS 2010. LNCS, vol.\u00a06503, pp. 156\u2013170. Springer, Heidelberg (2010)"},{"key":"11_CR38","doi-asserted-by":"crossref","unstructured":"Wilander, J., Nikiforakis, N., Younan, Y., Kamkar, M., Joosen, W.: Ripe: Runtime intrusion prevention evaluator. In: Proceedings of the 27th Annual Computer Security Applications Conference, ACSAC (2011)","DOI":"10.1145\/2076732.2076739"},{"key":"11_CR39","doi-asserted-by":"crossref","unstructured":"Younan, Y., Joosen, W., Piessens, F.: Efficient protection against heap-based buffer overflows without resorting to magic. In: Proceedings of the International Conference on Information and Communication Security, Raleigh, NC (December 2006)","DOI":"10.1007\/11935308_27"},{"issue":"3","key":"11_CR40","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/2187671.2187679","volume":"44","author":"Y. Younan","year":"2012","unstructured":"Younan, Y., Joosen, W., Piessens, F.: Runtime countermeasures for code injection attacks against C and C++ programs. ACM Computing Surveys 44(3), 17:1\u201317:28 (2012)","journal-title":"ACM Computing Surveys"},{"key":"11_CR41","doi-asserted-by":"crossref","unstructured":"Zeng, Q., Wu, D., Liu, P.: Cruiser: concurrent heap buffer overflow monitoring using lock-free data structures. In: Proceedings of the 32nd ACM SIGPLAN Conference on Programming Language Design and Implementation (2011)","DOI":"10.1145\/1993498.1993541"}],"container-title":["Lecture Notes in Computer Science","Detection of Intrusions and Malware, and Vulnerability Assessment"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-39235-1_11","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,15]],"date-time":"2019-05-15T15:22:41Z","timestamp":1557933761000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-39235-1_11"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2013]]},"ISBN":["9783642392344","9783642392351"],"references-count":41,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-39235-1_11","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2013]]}}}