Question: Part II: Return - Oriented Programming Performing code - injection attacks on program RTARGET is much more difficult than it is for CTARGET, because it

Part II: Return-Oriented Programming
Performing code-injection attacks on program RTARGET is much more difficult than it is for CTARGET,
because it uses two techniques to thwart such attacks:
It uses randomization so that the stack positions differ from one run to another. This makes it impos-
sible to determine where your injected code will be located.
It marks the section of memory holding the stack as nonexecutable, so even if you could set the
program counter to the start of your injected code, the program would fail with a segmentation fault.
Fortunately, clever people have devised strategies for getting useful things done in a program by executing
existing code, rather than injecting new code. The most general form of this is referred to as return-oriented
programming (ROP)[1,2]. The strategy with ROP is to identify byte sequences within an existing program

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Programming Questions!

Q:

Data set Theory Assume an informational record with one association parent including matches (a, b) where a can't try not to be a parent of b. (a) Write a Datalog demand which gives the graph of...

Q:

can someone solve this Modern workstations typically have memory systems that incorporate two or three levels of caching. Explain why they are designed like this. [4 marks] In order to investigate...

Q:

A creative engineer suggests structuring the TLB so that not all the bits of the presented address need match to result in a hit. Suggest how this might be achieved, and what might be the costs and...

Q:

Please see attached file and answer (1-2 pages) the following questions: - What is the structure of this industry? - Who are the primary players? - What external risks does the industry face? Table...

Q:

Hi, I have areport due in nine hours. I need to find the following list of things on Amazon.com....

Q:

Could I get the cost of capital calculation (WACC) broken out in excel for Amazon based on FY2015 financials? \fTo our shareowners: This year, Amazon became the fastest company ever to reach $100...

Q:

Let A, B be sets. Define: (a) the Cartesian product (A B) (b) the set of relations R between A and B (c) the identity relation A on the set A [3 marks] Suppose S, T are relations between A and B, and...

Q:

Let r and s be solutions to the quadratic equation x 2 b x + c = 0. For n N, define d0 = 0 d1 = r s dn = b dn1 c dn2 (n 2) Prove that dn = r n s n for all n N. [4 marks] (b) Recall that a commutative...

Q:

Predictive text entry systems are familiar on touch screens and mobile phones. This question asks you to consider how the same principles might be used in a programming editor for creating Java code....

Q:

I am struggling to do the proper computations for some simple accounting. After i get this down, i will produce a paper on the importance of each number i solved for. Can someone please help me...

Q:

On December 31, 2014, Gibson Company has $18,200,000 of short-term debt in the form of notes payable to Blue Lagoon State Bank due in 2015. On January 28, 2015, Gibson enters into a refinancing...

Q:

all of the following should be considered in a make-or buy decision: a. quality issues with supplier b. cost savings c. whether the supplier will make a profit that would no longer belong to the...

Q:

Which of the following is not a use of accounting data produced by the payroll process? Group of answer choices Costing products and services Estimating future staffing levels Updating financial...

Q:

Can you help me solve this problem? What would the steps be to get the outcome? Thanks A merchandise company reported the followi results for the year: Number of units sold Selling price per unit...