緩沖區(qū)溢出攻擊的分析及防范策略


頁數(shù)：20 字?jǐn)?shù)：11949

緩沖區(qū)溢出攻擊的分析及防范策略
隨著Internet及相關(guān)信息技術(shù)的迅速發(fā)展，網(wǎng)上的電子商務(wù)呈現(xiàn)出極大的增長(zhǎng)勢(shì)頭，但是投入的增多意味著風(fēng)險(xiǎn)也隨之而來，網(wǎng)絡(luò)安全問題成為各種網(wǎng)上活動(dòng)需要考慮的頭等大事。
本文重點(diǎn)探討一下緩沖區(qū)溢出對(duì)計(jì)算機(jī)系統(tǒng)造成的危害。因?yàn)閹资陙?，緩沖區(qū)溢出一直引起許多嚴(yán)重的安全性問題。近年由CERT/CC(Computer Emergency Response Term/Coodination Center)發(fā)布的忠告中關(guān)于緩沖區(qū)溢出漏洞占56.76%以上。
本文首先解釋了緩沖區(qū)溢出的概念，從程序語言本身存在缺陷，不夠健壯的角度出發(fā)，對(duì)緩沖區(qū)溢出的原理進(jìn)行了詳細(xì)的闡述；再次，通過一個(gè)會(huì)導(dǎo)致緩沖區(qū)溢出的程序代碼對(duì)緩沖區(qū)溢出攻擊的產(chǎn)生進(jìn)行了實(shí)例分析，同時(shí)還對(duì)Unix操作系統(tǒng)下的緩沖區(qū)溢出攻擊進(jìn)行了有針對(duì)性的分析，并總結(jié)出緩沖區(qū)溢出攻擊的類型；最后，結(jié)合緩沖區(qū)溢出攻擊的類型，從系統(tǒng)管理和軟件開發(fā)兩個(gè)角度提出了緩沖區(qū)溢出攻擊的防范策略。
?
?
關(guān)鍵字：緩沖區(qū)溢出? 攻擊
?
?
AbstractWith the development of Internet and information technology, the great growth has appeared out in E-Commerce. But this trend lead to more venture, network security issue has become the cardinal task that various kinds of online activity need to consider.At present, the biggest problem on network is that computer software is usually not stalwart enough, sometimes such barrier will cause catastrophic result, especially when being utilized maliciously by the lawless person, the harm will hard to estimate.Buffer overflow attacking is a seriously problem in network security and cause serious security problems in recently years. Some program language have pestilent bug, for example, C program language doesn’t check the border of the array of number is apt to cause the buffer overflow, and therefore possibly cause the failure of program processing and paralysis of computer.This paper analysis deeply the principle and possible of buffer overflow attacking, and point out buffer overflow’s potential dangers. At last, according to the kinds of buffer overflow attacking, I put forward my own opinion of precautionary measures on buffer overflow attacking.
Key Words: buffe