Software diversification in external contexts

The present invention features a system in which dynamic code randomization may be used in concert with enforcement-based mitigation policies to optimally secure a software code. A privileged, external execution context is employed when rewriting (randomizing) the software code. The rewritten code i...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Larsen, Per, Homescu, Andrei, Crane, Stephen J
Format: Patent
Sprache:eng
Schlagworte:
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The present invention features a system in which dynamic code randomization may be used in concert with enforcement-based mitigation policies to optimally secure a software code. A privileged, external execution context is employed when rewriting (randomizing) the software code. The rewritten code is then reloaded and executed in a less privileged execution context. Finally, the system ensures that the less privileged execution context is authorized to load and execute the code before rewriting.