A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2017; you can also visit the original URL.
The file type is application/pdf
.
Code Randomization: Haven't We Solved This Problem Yet?
2016
2016 IEEE Cybersecurity Development (SecDev)
Two decades since the idea of using software diversity for security was put forward, ASLR is the only technique to see widespread deployment. This is puzzling since academic security researchers have published scores of papers claiming to advance the state of the art in the area of code randomization. Unfortunately, these improved diversity techniques are generally less deployable than integrity-based techniques, such as controlflow integrity, due to their limited compatibility with existing
doi:10.1109/secdev.2016.036
dblp:conf/secdev/CraneHL16
fatcat:5ohuioyhkfe3lmp2kyb5srsgdi