Question: Instead of push return address onto the same stack that's mixed together with data (e.g., local variable: buffers), the CPU will push it to a

Instead of push return address onto the same stack that's mixed

Instead of push return address onto the same stack that's mixed together with data (e.g., local variable: buffers), the CPU will push it to a dedicated stack that stores only the return address. Similarly, when ret instruction is invoked, the CPU will automatically pop from the dedicated stack. This way, a buffer overflow will overflow the stack that no longer stores the return address and therefore all return-oriented buffer overflow attacks are automatically prevented (impossible to occur). 1. Is the above strategy secure? If not, give one counterexample. (1.5 points) 2. Give one other reason (security or non-security reason) why this approach may not be desirable. (1.5 points) 3. Suggest any idea to improve the design to make it more secure or more practical? (3 bonus points)

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Instead of push return address onto the same stack that's mixed together with data (e.g., local variable: buffers), the CPU will push it to a dedicated stack that stores only the return address....

Provide a summary technical report with your own words about Pipelined Execution which is also named as Instruction Level Parallelism, addressing mainly the following areas: 1. What is Pipelined...

computer security course, please I need help it due 3 hours. 1 Lab Overview The learning objective of this lab is for students to gain the first-hand experience on buffer-overflow vulner- ability by...

MIPS, java Make the relevant portion above into a called procedure. This relevant portion reads in two values ($s0 and $s1), and adds them up ($s2). So this procedure needs to push $s0, $s1 and $s2...

Please do Part 2 and 3 Rocky Mountain Microbrewery, LLC In 2015, Greg Johnson quit his engineering job to start his own brewery, Rocky Mountain Microbrewery, LLC, (RMM). His family supported his...

IN C or C++ or JAVA The project will simulate a simple computer system consisting of a CPU and Memory. The CPU and Memory will be simulated by separate processes that communicate. Memory will contain...

Solve this problem in Java Problem Overview The project will simulate a simple computer system consisting of a CPU and Memory. The CPU and Memory will be simulated by separate processes that...

Procedure Calls You are going to convert a simple program (on the next page, you can copy paste) into a simple leaf procedure (leaf means it doesnt call anything else) Fairly simply, you do this with...

please, include the assembly program too. thank you MSP430 Assembly Programming Intermediate Memory Map, Assembly Directives, and Comparisons In this lab, you will be designing an assembly program...

Calculate the payback period, IRR, MIRR, NPV, and PI for the following two mutually exclusive projects. The required rate of return is 15% and the target payback is 4 years. Explain which project is...

Efficiency is the Operating Cash Flow as a percentage of total costs (Goods Sold & Fixed Costs). What was the efficiency of IPG in 1996?

in Cell V33 we are looking for calculating the continuing value. Using the long run growth rate to value the perpetuity

Which of the following is required for a taxpayer to revoke an IRS power of attorney? A ) The taxpayer must obtain a court order to revoke an existing power of attorney B ) The taxpayer must...

=+2 Moving to a performance based HRM system seems to be an issue in many regions and countries such as Asia-Pacific and Europe. What are some of the barriers

=+j Explain the current debate over the convergence of IHRM across countries and regions.

=+1 What are the major differences between macro- and micro-regions?