| 发明名称 |
Using Assured Calling Sequences in Micro-Sandboxes |
| 摘要 |
The present disclosure relates to methods, systems, and devices that use assured calling sequences to validate proper application behavior. Validating calling sequences ensures that attackers have not modified the process' stack to gain control of the execution path for critical operations. The validation may involve mapping calling sequence addresses to modules or functions present in the process. Additionally, some embodiments relate to eliminating unnecessary code from various modules and controlling which modules can be loaded into a program. |
| 申请公布号 |
US2017083701(A1) |
申请公布日期 |
2017.03.23 |
| 申请号 |
US201615144993 |
申请日期 |
2016.05.03 |
| 申请人 |
OnSystem Logic, LLC |
发明人 |
TAJALLI Homayoon;GRAHAM Jeffrey J. |
| 分类号 |
G06F21/53;G06F21/56;G06F17/30 |
主分类号 |
G06F21/53 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method of validating application behavior, comprising:
intercepting a function call; obtaining a calling sequence associated with the function call; determining that the obtained calling sequence matches at least a portion of an assured calling sequence (ACS); and allowing the function call to execute based at least on the determination that the obtained calling sequence matches at least a portion of the ACS. |
| 地址 |
Baltimore MD US |
