| 000 -LEADER |
|---|
| fixed length control field |
03174nam a22003737a 4500 |
| 001 - CONTROL NUMBER |
|---|
| control field |
20749413 |
| 003 - CONTROL NUMBER IDENTIFIER |
|---|
| control field |
APU |
| 005 - DATE AND TIME OF LATEST TRANSACTION |
|---|
| control field |
20221101101610.0 |
| 008 - FIXED-LENGTH DATA ELEMENTS--GENERAL INFORMATION |
|---|
| fixed length control field |
210804t20182018nyua b 000 0 eng d |
| 010 ## - LIBRARY OF CONGRESS CONTROL NUMBER |
|---|
| LC control number |
2018303882 |
| 020 ## - INTERNATIONAL STANDARD BOOK NUMBER |
|---|
| International Standard Book Number |
9781970001822 (epub) |
| 020 ## - INTERNATIONAL STANDARD BOOK NUMBER |
|---|
| International Standard Book Number |
9781970001815 (pdf) |
| 035 ## - SYSTEM CONTROL NUMBER |
|---|
| System control number |
(OCoLC)on1030607469 |
| 040 ## - CATALOGING SOURCE |
|---|
| Original cataloging agency |
AZU |
| Language of cataloging |
eng |
| Transcribing agency |
APU |
| Modifying agency |
SF |
| 042 ## - AUTHENTICATION CODE |
|---|
| Authentication code |
lccopycat |
| 050 00 - LIBRARY OF CONGRESS CALL NUMBER |
|---|
| Classification number |
QA76.9.A25 |
| Item number |
L36 2018eb |
| 082 04 - DEWEY DECIMAL CLASSIFICATION NUMBER |
|---|
| Classification number |
005.8 |
| Edition number |
23 |
| 100 1# - MAIN ENTRY--PERSONAL NAME |
|---|
| Personal name |
Larsen, Per, |
| Dates associated with a name |
1980- |
| 9 (RLIN) |
47431 |
| 245 14 - TITLE STATEMENT |
|---|
| Title |
The continuing arms race : |
| Remainder of title |
code-reuse attacks and defenses |
| Medium |
[electronic resource] / |
| Statement of responsibility, etc |
Per Larsen, Ahmad-Reza Sadeghi. |
| 260 ## - PUBLICATION, DISTRIBUTION, ETC. (IMPRINT) |
|---|
| Place of publication, distribution, etc |
[New York] : |
| Name of publisher, distributor, etc |
Association for Computing Machinery, |
| Date of publication, distribution, etc |
c2018. |
| 300 ## - PHYSICAL DESCRIPTION |
|---|
| Extent |
1 online resource (xiii, 288 pages) : |
| Other physical details |
illustrations (some color) ; |
| Dimensions |
24 cm. |
| 490 1# - SERIES STATEMENT |
|---|
| Series statement |
ACM books, |
| International Standard Serial Number |
2374-6769 ; |
| Volume number/sequential designation |
#18 |
| 504 ## - BIBLIOGRAPHY, ETC. NOTE |
|---|
| Bibliography, etc |
Includes bibliographical references (pages 261-281). |
| 505 0# - FORMATTED CONTENTS NOTE |
|---|
| Formatted contents note |
How Memory Safety Violations Enable Exploitation of Programs -- Protecting Dynamic Code -- Diversity and Information Leaks -- Code-Pointer Integrity -- Evaluating Control: Flow Restricting Devices -- Attacking Dynamic Code -- Hardware Control Flow Integrity -- Multi-Variant Execution Environments. |
| 520 ## - SUMMARY, ETC. |
|---|
| Summary, etc |
As human activities moved to the digital domain, so did all the well-known malicious behaviors including fraud, theft, and other trickery. There is no silver bullet, and each security threat calls for a specific answer. One specific threat is that applications accept malformed inputs, and in many cases it is possible to craft inputs that let an intruder take full control over the target computer system. The nature of systems programming languages lies at the heart of the problem. Rather than rewriting decades of well-tested functionality, this book examines ways to live with the (programming) sins of the past while shoring up security in the most efficient manner possible. We explore a range of different options, each making significant progress towards securing legacy programs from malicious inputs. The solutions explored include enforcement-type defenses, which excludes certain program executions because they never arise during normal operation. Another strand explores the idea of presenting adversaries with a moving target that unpredictably changes its attack surface thanks to randomization. We also cover tandem execution ideas where the compromise of one executing clone causes it to diverge from another thus revealing adversarial activities. The main purpose of this book is to provide readers with some of the most influential works on run-time exploits and defenses. We hope that the material in this book will inspire readers and generate new ideas and paradigms. -- |
| 650 #0 - SUBJECT ADDED ENTRY--TOPICAL TERM |
|---|
| Topical term or geographic name as entry element |
Computer security. |
| 650 #0 - SUBJECT ADDED ENTRY--TOPICAL TERM |
|---|
| Topical term or geographic name as entry element |
Hacking |
| General subdivision |
Prevention. |
| 9 (RLIN) |
47432 |
| 650 #0 - SUBJECT ADDED ENTRY--TOPICAL TERM |
|---|
| Topical term or geographic name as entry element |
Memory management (Computer science) |
| 9 (RLIN) |
10870 |
| 650 #7 - SUBJECT ADDED ENTRY--TOPICAL TERM |
|---|
| Topical term or geographic name as entry element |
Computer security. |
| Source of heading or term |
fast |
| 9 (RLIN) |
47433 |
| 700 1# - ADDED ENTRY--PERSONAL NAME |
|---|
| Personal name |
Sadeghi, Ahmad-Reza, |
| 9 (RLIN) |
47434 |
| 830 #0 - SERIES ADDED ENTRY--UNIFORM TITLE |
|---|
| Uniform title |
ACM books ; |
| Volume number/sequential designation |
#18. |
| 9 (RLIN) |
47379 |
| 856 ## - ELECTRONIC LOCATION AND ACCESS |
|---|
| Uniform Resource Identifier |
https://dl-acm-org.ezproxy.apiit.edu.my/doi/book/10.1145/3129743 |
| Public note |
Available in ACM Digital Library. Requires Log In to view full text. |
| 942 ## - ADDED ENTRY ELEMENTS (KOHA) |
|---|
| Source of classification or shelving scheme |
|
| Koha item type |
E-Book |
