The Research And Implementation Of Buffer Overflow Attack Language

Buffer overflow attacks against computer systems is a means to be attacked by a buffer in the process meticulously arranged supernatural elements, resulting buffer overflow, cross-border and undermine the logic of the implementation process to turn to other instructions, thus achieving the purpose of the attackers. Because of the way the technology was relatively simple and attack effects more prominent, and therefore become a national study of information warfare, one of the hot spots. Buffer overflow attacks realized, we must rely on the high level language to describe it, high efficiency direct language to describe the efficiency of decision buffer overflow attacks, the study described buffer overflow attacks high level language efficiency for the future of information warfare has important theoretical and practical significance.At present, the research into buffer overflow attack includes: new ways and new technology applied in buffer overflow attack; ways to fail defense technology in buffer overflow; local attack, and remote attack, and so on. However, there is little research into buffer overflow attack description oriented-attacker. The present description of buffer overflow attack mainly concentrates on specific leaks and their information involved. Then, it writes a use program manually, describing the construction of overflow character strings and ways to send them off. But this kind of description results in low efficiency, in addition, it is not universal at all, which is impractical for future Information warfares.As for the problems mentioned above, this paper focuses on present attack language, analyzing its disadvantages, putting forward a new program, that is, to analyze the present ways and technology used in buffer overflow attack, abstract a regular pattern of buffer overflow attack and have an attack language designed to describe buffer overflow attack. The subject of this program is the buffer overflow attack in Windows and Linux/Unix, and it pays most attention to stack overflow attack, abstractsa regular pattern of buffer overflow attack and designs attack language. It imposes a formalization prove and analysis on the language; it lives the language in Windows; it does an experimental validation in Windows and Linux/Unix. The result suggests that description of the new program is both efficient and universal. The research in this paper includes the followings:1. introduce the background information, and theories, technology applied in it, analyze the research home and abroad about buffer overflow attack as well as description of high level language, point out the disadvantages in them. The description of buffer overflow attack is neither efficient nor universal. The research into buffer overflow attack is mainly focusing on new ways, new technology applied in the attack, ways to fail defense system in the attack, local attack and remote attack, and etc. since the research into description of buffer overflow attack is about invasion detection, to a great extent, it is hard to find information related to description of active buffer overflow attack.2. as for the problems existing in buffer overflow attack, this paper analyzes present ways and attack language applied in buffer overflow attack, putting forward an idea of describing a new buffer overflow attack language to describe the attack, and talk about the key technology involved. The reason why description of buffer overflow is neither efficient nor universal is that: the describing tool is still an order style which uses advanced language to describe the process, so it can't make the describing process automatic. Some attack languages like STATL, is efficient, universal, and easy to graft, but they can't be used to describe buffer overflow attack owing to their own defects. Using STATL for reference, this paper does research into stack overflow attack, heap overflow attack, and bss overflow attack. Based on the research into stack overflow attack, this paper divides buffer overflow attack into embedded code and control logic, and it looks into the related grammar and semantics of the language definition in the meantime.3. based on the analysis research target and key technology, a describing language BOAL is designed to describe buffer overflow attack. Following the research target and design principle in this paper, an automatic model of buffer overflow attack is given. The core idea of this model is to use BOAL to describe target information and attack information, then explanations are given by translation devices, carrying out direct attack. This paper offers the grammar rule of buffer overflow attack language, BOAL, providing formalization prove and analysis for buffer overflow attack language BOAL.4. According to the designed grammar and semantics rules, carry out experimental prove for buffer overflow attack language. BOAL with tools like VC++6.0 and Lex and Yacc. Provide examples in the experiment, carry out experimental prove for buffer overflow attack language on Linux/x86, Unix/x86 and Windows/x86, and analyze the results. The results showed BOAL is correct and feasible.In the end, draw a conclusion of this paper and set a goal for the future research.