Open AccessResearch on the Protection Mechanism of Cisco IOS Exploit
Author(s) -
Jinzhu Wang,
Ruichu Cai,
Shengli Liu
Publication year - 2020
Publication title -
journal of physics. conference series
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.21
H-Index - 85
eISSN - 1742-6596
pISSN - 1742-6588
DOI - 10.1088/1742-6596/1584/1/012045
Subject(s) - vulnerability (computing) , exploit , computer science , computer security , mechanism (biology) , protection mechanism , vulnerability assessment , control (management) , psychology , philosophy , epistemology , artificial intelligence , psychological resilience , psychotherapist
Cisco IOS is an operating system that runs on Cisco routing and switching equipment. Its security is important to the entire network. Since vulnerability attacks have become one of the main sources of threat to Cisco IOS security, it is necessary to analyze the defense mechanism of IOS against vulnerability attacks. The purpose of this paper is to find out the deficiencies of IOS vulnerability defense mechanism in time and put forward improvement methods and preventive measures. Firstly, this paper introduces the protection mechanism of Cisco IOS vulnerability, including CheckHeaps, DEP, ASLR. The principle of these mechanisms and the idea of vulnerability protection are analyzed. And then, after analyzing the shortcomings of these protection mechanisms, the basic idea of bypassing these protection mechanisms is proposed. Finally, in view of the shortcomings of Cisco IOS vulnerability defense mechanism and the proposed bypass methods, some advices about how to better protect Cisco IOS from vulnerability exploitation are given.