Application security metrics when using defense system against vulnerabilities based on return-oriented programming
DOI: 10.21293/1818-0442-2021-24-4-46-51
Abstract: The vulnerabilities using return-oriented programming pose threats to the functioning of information systems. There are many protection systems to counteract them. They are based on various principles of functioning. At the same time, there are no generally accepted approaches to assess the security of applied solutions. The paper proposes security metrics that allow obtaining objective data on the efficiency of protection against RoP vulnerabilities. Proposed security metrics show ability to perform attack by gain control over control flow graph.
Keywords: vulnerability, remote code execution, rop, code protection, metrics
Authors and copyright holders:
—
For citation:
Lubkin I. A. Application security metrics when using defense system against vulnerabilities based on return-oriented programming. Doklady Tomskogo gosudarstvennogo universiteta sistem upravleniya i radioelektroniki, 2021, vol. 24, no. 4, pp. 46–51. DOI: 10.21293/1818-0442-2021-24-4-46-51
Last issue
-2025-1.jpg)
Editorial office address
Executive Secretary of the Editor’s Office
Editor’s Office: 40 Lenina Prospect, Tomsk, 634050, Russia
Phone / Fax: + 7 (3822) 701-582
Viktor N. Maslennikov
Executive Secretary of the Editor’s Office
Editor’s Office: 40 Lenina Prospect, Tomsk, 634050, Russia
Phone / Fax: + 7 (3822) 51-21-21 / 51-43-02
Subscription for updates
