Invention Grant
- Patent Title: Mitigating just-in-time spraying attacks in a network environment
- Patent Title (中): 缓解在网络环境中的即时喷涂攻击
-
Application No.: US13843696Application Date: 2013-03-15
-
Publication No.: US09015834B2Publication Date: 2015-04-21
- Inventor: Babak Salamat , Joseph Epstein
- Applicant: Cisco Technology, Inc.
- Applicant Address: US CA San Jose
- Assignee: Cisco Technology, Inc.
- Current Assignee: Cisco Technology, Inc.
- Current Assignee Address: US CA San Jose
- Agency: Patent Capital Group
- Main IPC: G06F21/00
- IPC: G06F21/00 ; G06F21/51
Abstract:
An example method for mitigating JIT spraying attacks in a network environment is provided and includes protecting an output of a just-in-time (JIT) compiler against attacks during application execution at least by intervening from outside the application into a JIT page generated by the JIT compiler in a memory element of a host. In a specific embodiment, the intervening can include rewriting the JIT page. In specific embodiments, the method can further include generating a shadow page corresponding to the JIT page in the memory element. The method can further include randomly choosing at least one block of instructions in the JIT page, moving the at least one block of instructions to the shadow page, and replacing the at least one block of instructions in the JIT page with at least one of invalid opcodes and halt instructions.
Public/Granted literature
- US20140283036A1 MITIGATING JUST-IN-TIME SPRAYING ATTACKS IN A NETWORK ENVIRONMENT Public/Granted day:2014-09-18
Information query
