首页|期刊导航|计算机应用与软件|面向细粒度随机化的ROP攻击响应方案

面向细粒度随机化的ROP攻击响应方案OA

ROP ATTACK RESPONSE SCHEME ORIENTED TO FINE-GRAINED RANDOMIZATION

中文摘要英文摘要

ROP(Return-Oriented Programming Attack)攻击可以绕过DEP(Data Execute Disable)防御,是软件安全的重要威胁之一.ROP运行时的检测方法存在误报和漏报,而程序崩溃的上下文信息缺失难以推断出ROP攻击.对此,提出一种面向细粒度随机化的ROP攻击响应方案.该方案在程序代码中内嵌异常捕获组件,及时捕获丰富的崩溃上下文信息,并设计关联ROP攻击向量和攻击方式的15 个ROP攻击指标.该方案使用模拟攻击实例和真实漏洞实例验证方案指标,利用模糊测试验证指标的攻击差异性,并提出不同漏洞类型的ROP攻击利用模式.该方案构建细粒度随机化安全机制与ROP攻击快速响应之间的桥梁.

Return-oriented programming attack(ROP)can bypass data execute disable(DEP)defense and pose a major threat to software security.ROP detection methods on runtime induce the false positives and false negatives,and it is difficult to infer ROP attacks from the context information of program crashes.Therefore,this paper proposes a ROP attack response scheme oriented to fine-grained randomization.In this scheme,an exception capture component was embedded in the program to capture rich crash context information in time.Meanwhile,15 ROP attack indicators associated with ROP payloads and attack modes were designed.This scheme used simulated attack instances and real vulnerability instances to verify the scheme indicators,used fuzzy testing to verify the attack differences of the indicators,and proposed ROP attack utilization modes for different vulnerability types.This scheme built a bridge between fine-grained randomization security mechanism and rapid response to ROP attacks.

傅建明;张婉芝;解梦飞

武汉大学国家网络安全学院空天信息安全与可信计算教育部重点实验室 湖北 武汉 430072武汉大学国家网络安全学院空天信息安全与可信计算教育部重点实验室 湖北 武汉 430072武汉大学国家网络安全学院空天信息安全与可信计算教育部重点实验室 湖北 武汉 430072

信息技术与安全科学

ROP攻击随机化攻击响应崩溃分析

ROP attackRandomizationAttack responseCrash analysis

《计算机应用与软件》 2026 (3)

314-321,330,9

国家自然科学基金项目(61972297,62172308)国家重点研发计划项目(2021YFB3101201).

10.3969/j.issn.1000-386x.2026.03.043

评论