| Buffer overflow has always been a dominant issue of system security.Many computer viruses or worms exploit this vulnerability to damage computer systems. Although numerous researches have been proposed to defend such attack, solutions that were really used as standard were rare. The main reason is that few solutions can be compatible with user binary code.Most of these solutions needs to modify the software code or the operation system,this behavior wasts plenty of times and works,can not do the efficency software test.This thesis chooses QEMU emulator to emulate a hardware behavior and selects SmashGuard mechanism to test its feasibility.For build a complete test system we designed an Function Hot Mend module based by Software Fault Injection Technical (SFIT),which used for simulate buffer overflow attrack.The result showed that it will produce some problems, and the reason was analyzed. Hence, this thesis proposed a two layer checking mechanism. In addition to checking the consistency of return address, validity of return address was also checked. The result demonstrates that this mechanism can differentiate and detect typical stack-smashing attack... |
PDF Full Text Request