The purpose of this paper is to propose a generic approach that prevents a specific class of code injection attacks (CIAs) in a novel way.
To defend against CIAs this approach involves detecting attacks by using location‐specific signatures to validate code statements. The signatures are unique identifiers that represent specific characteristics of a statement's execution. The key property that differentiates the scheme presented in this paper is that these characteristics do not depend entirely on the code statement, but also take into account elements from its execution context.
Mitropoulos, D., Karakoidas, V., Louridas, P. and Spinellis, D. (2011), "Countering code injection attacks: a unified approach", Information Management & Computer Security, Vol. 19 No. 3, pp. 177-194. https://doi.org/10.1108/09685221111153555
Emerald Group Publishing Limited
Copyright © 2011, Emerald Group Publishing Limited