Layout randomization is a powerful, popular technique for software protection. We present it and study it in programming-language terms. More specifically, we consider layout randomization as part of an implementation for a high-level programming language; the implementation translates this language to a lower-level language in which memory addresses are numbers. We analyze this implementation, by relating low-level attacks against the implementation to contexts in the high-level programming language, and by establishing full abstraction results.
|Number of pages||29|
|Journal||ACM Transactions on Information and System Security|
|Publication status||Published - 1 Jul 2012|
- Randomization, protection