| 一种防止堆缓冲区溢出的新方法 |
| |
| 作者姓名: | 邱晓鹏 张玉清 冯登国 |
| |
| 作者单位: | 1. 信息安全国家重点实验室(中国科学院研究生院);
2. 中国科学院研究生院国家计算机网络入侵防范中心, 北京 100049 |
| |
| 基金项目: | 北京市科技计划项目(H020120090530)资助 |
| |
| 摘 要: | 缓冲区溢出是当今计算机安全所面临的重大威胁.首先分析了堆缓冲区溢出的原理,然后提出了一种新的内存管理机制,这种机制可以根据缓冲区的大小,自我进行内存管理,从而有效地防止堆缓冲区溢出的发生.
|
| 关 键 词: | 缓冲区溢出 堆 内存管理 安全编程 |
| 收稿时间: | 2004-06-04 |
| 修稿时间: | 2004-07-20 |
A New Method to Prevent Heap Overflows |
| |
| Authors: | QIU Xiao-Peng ZHANG Yu-Qing FENG Deng-Guo |
| |
| Institution: | 1. State Key Laboratory of Information Security (Graduate School of the Chinese Academy of Sciences), Beijing 100049, China;
2. National Computer Network Intrusion Protection Center, Graduate School of the Chinese Academy of Sciences, Beijing 100049, China |
| |
| Abstract: | Buffer overflows are the most serious threat to the computer security. In this paper, the principle of the heap overflows is discussed, and a method of memory management is proposed, which can perform self management to the memory. With this method, the heap overflows can be prevented effectively. |
| |
| Keywords: | buffer overflows heap memory management secure program |
|
| 点击此处可从《》浏览原始摘要信息 |
| 点击此处可从《》下载免费的PDF全文 |
