欢迎访问中国科学院大学学报,今天是

中国科学院大学学报 ›› 2005, Vol. 22 ›› Issue (2): 218-225.DOI: 10.7523/j.issn.2095-6134.2005.2.015

• 论文 • 上一篇    下一篇

一种防止堆缓冲区溢出的新方法

邱晓鹏1, 张玉清1, 冯登国2   

  1. 1. 信息安全国家重点实验室(中国科学院研究生院);
    2. 中国科学院研究生院国家计算机网络入侵防范中心, 北京 100049
  • 收稿日期:2004-06-04 修回日期:2004-07-20 发布日期:2005-03-15
  • 通讯作者: 邱晓鹏,E-mail:qiuxp@nipc.org.cn
  • 基金资助:

    北京市科技计划项目(H020120090530)资助

A New Method to Prevent Heap Overflows

QIU Xiao-Peng1, ZHANG Yu-Qing1, FENG Deng-Guo2   

  1. 1. State Key Laboratory of Information Security (Graduate School of the Chinese Academy of Sciences), Beijing 100049, China;
    2. National Computer Network Intrusion Protection Center, Graduate School of the Chinese Academy of Sciences, Beijing 100049, China
  • Received:2004-06-04 Revised:2004-07-20 Published:2005-03-15

摘要:

缓冲区溢出是当今计算机安全所面临的重大威胁.首先分析了堆缓冲区溢出的原理,然后提出了一种新的内存管理机制,这种机制可以根据缓冲区的大小,自我进行内存管理,从而有效地防止堆缓冲区溢出的发生.

关键词: 缓冲区溢出, 堆, 内存管理, 安全编程

Abstract:

Buffer overflows are the most serious threat to the computer security. In this paper, the principle of the heap overflows is discussed, and a method of memory management is proposed, which can perform self management to the memory. With this method, the heap overflows can be prevented effectively.

Key words: buffer overflows, heap, memory management, secure program

中图分类号: