Open AccessROP Defense Using Trie Graph For System Security
Publication year - 2021
Publication title -
international journal of digital crime and forensics
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.192
H-Index - 15
eISSN - 1941-6229
pISSN - 1941-6210
DOI - 10.4018/ijdcf.20211101oa01
Subject(s) - computer science , gadget , computer security , system call , intrusion detection system , code (set theory) , operating system , programming language , set (abstract data type) , algorithm
Most Intrusion Detection Systems (IDS) / Intrusion Prevention Systems (IPS) cannot defend the attacks from a Return Oriented Program (ROP) which applies code reusing and exploiting techniques without the need for code injection. Malicious attackers chain a short sequence as a gadget and execute this gadget as an arbitrary (Turing-complete) behavior in the target program. Lots of ROP defense tools have been developed with satisfactory performance and low costs overhead, but malicious attackers can evade ROP tools. Therefore, it needs security researchers to continually improve existing ROP defense tools, because the defense ability of target devices, such as smartphones is weak, and such devices are being increasingly targeted. Our contribution in this paper is to propose an ROP defense method that has provided a better performance of defense against ROP attacks than existing ROP defense tools.