A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2011; you can also visit the original URL.
The file type is application/pdf
.
A framework for diversifying windows native APIs to tolerate code injection attacks
2007
Proceedings of the 2nd ACM symposium on Information, computer and communications security - ASIACCS '07
We present a framework to prevent code injection attacks in MS Windows using Native APIs in the operating system. By adopting the idea of diversity, this approach is implemented in a two-tier framework. The first tier permutes the Native API dispatch ID number so that only the Native API calls from legitimate sources are executed. The second tier provides an authentication process in case an attacker guesses the first-tier permutation order. The function call stack is back-traced to verify
doi:10.1145/1229285.1229338
dblp:conf/ccs/NguyenDRHL07
fatcat:b4scjbf3x5ditac5eovugolvoa