Eurosys, Date: 2009/04/01 - 2009/04/03, Location: Nuremberg
Publication date:
2009-03-31
12
ISSN:
9781605584737
Publisher:
Francesco Gadaleta; VTDS 2009 Nuremberg, Germany.
ACM International Conference Proceeding Series
Author:
Gadaleta, Francesco
Younan, Yves ; Jacobs, Bart ; Joosen, Wouter ; De Neve, Erik ; Beosier, Nils ; Gadaleta, Francesco
Keywords:
buffer overflows, countermeasure, virtualization
Abstract:
In this paper, we examine the possibility of using virtualization to implement a countermeasure that protects against buffer overflow attacks. The countermeasure works by adding a few extra instructions to the architecture that are emulated by the hypervisor. After running performance benchmarks, a high overhead was observed. Our proof of concept software implementation illustrates that the proposed approach is feasible and that the hardware implementation confirms a negligible overhead.