On Protection by Layout Randomization

Martín Abadi; Gordon D. Plotkin

doi:10.1145/2240276.2240279

On Protection by Layout Randomization

Research output: Contribution to journal › Article › peer-review

Abstract

Layout randomization is a powerful, popular technique for software protection. We present it and study it in programming-language terms. More specifically, we consider layout randomization as part of an implementation for a high-level programming language; the implementation translates this language to a lower-level language in which memory addresses are numbers. We analyze this implementation, by relating low-level attacks against the implementation to contexts in the high-level programming language, and by establishing full abstraction results.

Original language	English
Article number	8
Number of pages	29
Journal	ACM Transactions on Information and System Security
Volume	15
Issue number	2
DOIs	https://doi.org/10.1145/2240276.2240279
Publication status	Published - 1 Jul 2012

Keywords / Materials (for Non-textual outputs)

Randomization, protection

Access to Document

10.1145/2240276.2240279

paper-journal-shortAccepted author manuscript, 672 KB

http://doi.acm.org/10.1145/2240276.2240279

Cite this

@article{da43122d2a0f42a4b875687d08704751,

title = "On Protection by Layout Randomization",

abstract = "Layout randomization is a powerful, popular technique for software protection. We present it and study it in programming-language terms. More specifically, we consider layout randomization as part of an implementation for a high-level programming language; the implementation translates this language to a lower-level language in which memory addresses are numbers. We analyze this implementation, by relating low-level attacks against the implementation to contexts in the high-level programming language, and by establishing full abstraction results.",

keywords = "Randomization, protection",

author = "Mart{\'i}n Abadi and Plotkin, {Gordon D.}",

year = "2012",

month = jul,

day = "1",

doi = "10.1145/2240276.2240279",

language = "English",

volume = "15",

journal = "ACM Transactions on Information and System Security",

issn = "1094-9224",

publisher = "Association for Computing Machinery (ACM)",

number = "2",

}

TY - JOUR

T1 - On Protection by Layout Randomization

AU - Abadi, Martín

AU - Plotkin, Gordon D.

PY - 2012/7/1

Y1 - 2012/7/1

N2 - Layout randomization is a powerful, popular technique for software protection. We present it and study it in programming-language terms. More specifically, we consider layout randomization as part of an implementation for a high-level programming language; the implementation translates this language to a lower-level language in which memory addresses are numbers. We analyze this implementation, by relating low-level attacks against the implementation to contexts in the high-level programming language, and by establishing full abstraction results.

AB - Layout randomization is a powerful, popular technique for software protection. We present it and study it in programming-language terms. More specifically, we consider layout randomization as part of an implementation for a high-level programming language; the implementation translates this language to a lower-level language in which memory addresses are numbers. We analyze this implementation, by relating low-level attacks against the implementation to contexts in the high-level programming language, and by establishing full abstraction results.

KW - Randomization, protection

U2 - 10.1145/2240276.2240279

DO - 10.1145/2240276.2240279

M3 - Article

SN - 1094-9224

VL - 15

JO - ACM Transactions on Information and System Security

JF - ACM Transactions on Information and System Security

IS - 2

M1 - 8

ER -

On Protection by Layout Randomization

Abstract

Keywords / Materials (for Non-textual outputs)

Access to Document

Fingerprint

Cite this