緩沖區(qū)溢出漏洞挖掘和防護(hù)技術(shù)研究
發(fā)布時間:2018-11-12 10:18
【摘要】:軟件安全漏洞已經(jīng)成為網(wǎng)絡(luò)安全的主要問題之一,,尤其是近幾年來互聯(lián)網(wǎng)針對軟件漏洞發(fā)生的安全事件越來越嚴(yán)重,不管是在國家戰(zhàn)略層面還是在社會安全層面,軟件漏洞的檢測和防護(hù)都處在極其重要的位置。 緩沖區(qū)溢出漏洞是軟件的主要威脅之一,隨著網(wǎng)絡(luò)技術(shù)的快速發(fā)展,軟件應(yīng)用程序的開發(fā)和普及也越來越廣泛,但是數(shù)量上的突飛猛進(jìn)并沒有帶來與之相對應(yīng)的安全層面的質(zhì)量保證,導(dǎo)致緩沖區(qū)漏洞引發(fā)的安全事件日益增多。因此,如何有效的檢測和防護(hù)緩沖區(qū)溢出漏洞一直以來都是安全領(lǐng)域的一個非常重要的課題。 本文在詳細(xì)分析了緩沖區(qū)溢出攻擊的原理和漏洞利用技術(shù)的基礎(chǔ)上,針對二進(jìn)制程序的漏洞挖掘問題,提出了一種基于遺傳算法的Fuzzing漏洞檢測技術(shù),結(jié)合緩沖區(qū)溢出漏洞的特征,構(gòu)造具有很好的完備性和較高覆蓋率的測試用例,通過靜態(tài)分析技術(shù),智能的引導(dǎo)測試數(shù)據(jù)邏輯到二進(jìn)制程序的脆弱語句部分,使其能夠快速的命中緩沖區(qū)溢出漏洞。 基于漏洞挖掘的準(zhǔn)確性和完備性,本文進(jìn)一步提出一種基于AES加密算法的緩沖區(qū)溢出漏洞代碼保護(hù)方案。對敏感數(shù)據(jù)區(qū)域進(jìn)行加密是緩沖區(qū)溢出攻擊防御技術(shù)的主要手段,但是受限于一般加密算法的復(fù)雜度和安全性的要求其效果并不理想,而AES加密算法具有更長的密鑰可以明顯提高系統(tǒng)的安全性,并且算法實(shí)現(xiàn)簡單,迭代次數(shù)也可以得到較好的控制。依據(jù)該方案實(shí)驗(yàn)結(jié)果表明,在保護(hù)緩沖區(qū)安全區(qū)域AES加密算法具有更高的安全性和較低的系統(tǒng)開銷。
[Abstract]:Software security vulnerabilities have become one of the main problems of network security, especially in recent years, the Internet security incidents against software vulnerabilities have become more and more serious, whether in the national strategic level or in the social security level. Software vulnerability detection and protection are in an extremely important position. Buffer overflow vulnerability is one of the main threats to software. With the rapid development of network technology, the development and popularization of software applications are becoming more and more widespread. However, the rapid increase in quantity does not bring the corresponding security quality assurance, which leads to the increasing number of security incidents caused by buffer zone vulnerabilities. Therefore, how to effectively detect and protect buffer overflow vulnerabilities has always been a very important issue in the field of security. Based on the detailed analysis of the principle of buffer overflow attack and vulnerability exploitation technology, this paper proposes a Fuzzing vulnerability detection technology based on genetic algorithm, aiming at the problem of vulnerability mining in binary programs. Combined with the characteristics of buffer overflow vulnerability, a test case with good completeness and high coverage is constructed. Through static analysis technology, the logic of test data can be guided intelligently to the fragile statement part of binary program. Enables it to quickly hit a buffer overflow vulnerability. Based on the accuracy and completeness of vulnerability mining, this paper proposes a buffer overflow code protection scheme based on AES encryption algorithm. Encryption of sensitive data regions is the main means of buffer overflow attack defense technology, but limited by the complexity and security requirements of general encryption algorithm, its effect is not satisfactory. AES encryption algorithm with longer key can obviously improve the security of the system, and the algorithm is simple to implement, and the number of iterations can be better controlled. The experimental results show that the AES encryption algorithm has higher security and lower system overhead.
【學(xué)位授予單位】:天津理工大學(xué)
【學(xué)位級別】:碩士
【學(xué)位授予年份】:2014
【分類號】:TP393.08
[Abstract]:Software security vulnerabilities have become one of the main problems of network security, especially in recent years, the Internet security incidents against software vulnerabilities have become more and more serious, whether in the national strategic level or in the social security level. Software vulnerability detection and protection are in an extremely important position. Buffer overflow vulnerability is one of the main threats to software. With the rapid development of network technology, the development and popularization of software applications are becoming more and more widespread. However, the rapid increase in quantity does not bring the corresponding security quality assurance, which leads to the increasing number of security incidents caused by buffer zone vulnerabilities. Therefore, how to effectively detect and protect buffer overflow vulnerabilities has always been a very important issue in the field of security. Based on the detailed analysis of the principle of buffer overflow attack and vulnerability exploitation technology, this paper proposes a Fuzzing vulnerability detection technology based on genetic algorithm, aiming at the problem of vulnerability mining in binary programs. Combined with the characteristics of buffer overflow vulnerability, a test case with good completeness and high coverage is constructed. Through static analysis technology, the logic of test data can be guided intelligently to the fragile statement part of binary program. Enables it to quickly hit a buffer overflow vulnerability. Based on the accuracy and completeness of vulnerability mining, this paper proposes a buffer overflow code protection scheme based on AES encryption algorithm. Encryption of sensitive data regions is the main means of buffer overflow attack defense technology, but limited by the complexity and security requirements of general encryption algorithm, its effect is not satisfactory. AES encryption algorithm with longer key can obviously improve the security of the system, and the algorithm is simple to implement, and the number of iterations can be better controlled. The experimental results show that the AES encryption algorithm has higher security and lower system overhead.
【學(xué)位授予單位】:天津理工大學(xué)
【學(xué)位級別】:碩士
【學(xué)位授予年份】:2014
【分類號】:TP393.08
【參考文獻(xiàn)】
相關(guān)期刊論文 前8條
1 閔亨高;;網(wǎng)絡(luò)攻擊發(fā)展趨勢[J];計算機(jī)安全;2013年01期
2 弟宇鳴;陳榮樺;左廣霞;;基于AES算法的加密模塊設(shè)計[J];電子設(shè)計工程;2013年02期
3 遲強(qiáng);羅紅;喬向東;;漏洞挖掘分析技術(shù)綜述[J];計算機(jī)與信息技術(shù);2009年Z2期
4 王先培,張愛菊,熊平,張俊;新一代數(shù)據(jù)加密標(biāo)準(zhǔn)——AES[J];計算機(jī)工程;2003年03期
5 夏建軍;孫樂昌;劉京菊;張e
本文編號:2326824
本文鏈接:http://sikaile.net/guanlilunwen/ydhl/2326824.html
最近更新
教材專著
