ES2156029T3 - Procedimiento para la supervision de la ejecucion prescrita de programas de software. - Google Patents

Procedimiento para la supervision de la ejecucion prescrita de programas de software.

Info

Publication number
ES2156029T3
ES2156029T3 ES98906810T ES98906810T ES2156029T3 ES 2156029 T3 ES2156029 T3 ES 2156029T3 ES 98906810 T ES98906810 T ES 98906810T ES 98906810 T ES98906810 T ES 98906810T ES 2156029 T3 ES2156029 T3 ES 2156029T3
Authority
ES
Spain
Prior art keywords
procedure
software programs
supervision
prescribed execution
memorized
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Lifetime
Application number
ES98906810T
Other languages
English (en)
Inventor
Michael Baldischweiler
Stefan Pfab
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Infineon Technologies AG
Original Assignee
Infineon Technologies AG
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Infineon Technologies AG filed Critical Infineon Technologies AG
Application granted granted Critical
Publication of ES2156029T3 publication Critical patent/ES2156029T3/es
Anticipated expiration legal-status Critical
Expired - Lifetime legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/52Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow
    • G06F21/54Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems during program execution, e.g. stack integrity ; Preventing unwanted data erasure; Buffer overflow by adding security routines or objects to programs
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F12/00Accessing, addressing or allocating within memory systems or architectures
    • G06F12/14Protection against unauthorised use of memory or access to memory
    • G06F12/1416Protection against unauthorised use of memory or access to memory by checking the object accessibility, e.g. type of access defined by the memory independently of subject rights
    • G06F12/1425Protection against unauthorised use of memory or access to memory by checking the object accessibility, e.g. type of access defined by the memory independently of subject rights the protection being physical, e.g. cell, word, block
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/448Execution paradigms, e.g. implementations of programming paradigms
    • G06F9/4482Procedural
    • G06F9/4484Executing subprograms
    • G06F9/4486Formation of subprogram jump address
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2141Access rights, e.g. capability lists, access control lists, access tables, access matrices
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2143Clearing memory, e.g. to prevent the data from being stolen

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Storage Device Security (AREA)
  • Debugging And Monitoring (AREA)
  • Executing Machine-Instructions (AREA)
  • Stored Programmes (AREA)

Abstract

LA INVENCION REVELA UN PROCEDIMIENTO, CARACTERIZADO PORQUE SE IMPIDE LA ESCRITURA ENCIMA DE DIRECCIONES DE RETORNO MEMORIZADAS PARA USO POSTERIOR Y/O EL USO COMO DIRECCIONES DE RETORNO DE DIRECCIONES DE RETORNO INCORRECTAMENTE MEMORIZADAS O SOBRESCRITAS. ESTO SIGNIFICA QUE, EN DETERMINADAS MANIPULACIONES DELIBERADAS DEL PROGRAMA, PUEDE EXCLUIRSE EL MAXIMO POSIBLE EL FLUJO DE PROGRAMAS DE SOFTWARE.
ES98906810T 1997-01-15 1998-01-15 Procedimiento para la supervision de la ejecucion prescrita de programas de software. Expired - Lifetime ES2156029T3 (es)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
DE19701166A DE19701166A1 (de) 1997-01-15 1997-01-15 Verfahren zur Überwachung der bestimmungsgemäßen Ausführung von Softwareprogrammen

Publications (1)

Publication Number Publication Date
ES2156029T3 true ES2156029T3 (es) 2001-06-01

Family

ID=7817440

Family Applications (1)

Application Number Title Priority Date Filing Date
ES98906810T Expired - Lifetime ES2156029T3 (es) 1997-01-15 1998-01-15 Procedimiento para la supervision de la ejecucion prescrita de programas de software.

Country Status (12)

Country Link
US (1) US6202176B1 (es)
EP (1) EP0951673B1 (es)
JP (1) JP2001511271A (es)
KR (1) KR20000070127A (es)
CN (1) CN1248110C (es)
AT (1) ATE200358T1 (es)
BR (1) BR9806770A (es)
DE (2) DE19701166A1 (es)
ES (1) ES2156029T3 (es)
RU (1) RU2220443C2 (es)
UA (1) UA55438C2 (es)
WO (1) WO1998032072A1 (es)

Families Citing this family (34)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE19944991B4 (de) * 1999-09-20 2004-04-29 Giesecke & Devrient Gmbh Verfahren zur Sicherung eines Programmablaufs
DE10122505A1 (de) * 2001-05-10 2002-11-14 Giesecke & Devrient Gmbh Verfahren zum Schützen eines Rechners gegen Manipulation von Registerinhalten und Rechner zum Durchführen des Verfahrens
US7853803B2 (en) * 2001-09-28 2010-12-14 Verizon Corporate Services Group Inc. System and method for thwarting buffer overflow attacks using encrypted process pointers
JP2004126854A (ja) * 2002-10-01 2004-04-22 Mitsubishi Electric Corp 攻撃対策装置
WO2005020069A1 (ja) * 2003-08-25 2005-03-03 Denki Hompo Ltd. コンピュータシステムのcpu(中央処理装置)
JP4518564B2 (ja) * 2003-09-04 2010-08-04 サイエンスパーク株式会社 不正コード実行の防止方法、不正コード実行の防止用プログラム、及び不正コード実行の防止用プログラムの記録媒体
US20050138263A1 (en) * 2003-12-23 2005-06-23 Mckeen Francis X. Method and apparatus to retain system control when a buffer overflow attack occurs
US7971255B1 (en) * 2004-07-15 2011-06-28 The Trustees Of Columbia University In The City Of New York Detecting and preventing malcode execution
US7594269B2 (en) * 2004-10-29 2009-09-22 Intel Corporation Platform-based identification of host software circumvention
US20090119492A1 (en) * 2005-10-26 2009-05-07 David James Seal Data Processing Apparatus and Method for Handling Procedure Call Instructions
US7774761B2 (en) * 2005-12-27 2010-08-10 International Business Machines Corporation Use of memory watch points and a debugger to improve analysis of runtime memory access errors
US20070174571A1 (en) * 2006-01-25 2007-07-26 Safenet, Inc. Binding a protected application program to shell code
US8352713B2 (en) 2006-08-09 2013-01-08 Qualcomm Incorporated Debug circuit comparing processor instruction set operating mode
US20080127118A1 (en) * 2006-10-02 2008-05-29 Bulent Kasman Method and system for dynamic patching of software
US20090187748A1 (en) * 2008-01-22 2009-07-23 Scott Krig Method and system for detecting stack alteration
DE102009005764A1 (de) 2009-01-23 2010-07-29 Giesecke & Devrient Gmbh Verfahren zur Überwachung der bestimmungsgemäßen Ausführung eines Unterprogramms
US8484625B2 (en) * 2009-04-01 2013-07-09 Motorola Mobility Llc Method and apparatus to vet an executable program using a model
RU2434272C1 (ru) * 2010-06-04 2011-11-20 Федеральное государственное учреждение "Государственный научно-исследовательский испытательный институт проблем технической защиты информации Федеральной службы по техническому и экспортному контролю" Система контроля отсутствия недекларированных возможностей в программном обеспечении
RU2434265C1 (ru) * 2010-07-13 2011-11-20 Федеральное государственное учреждение "Государственный научно-исследовательский испытательный институт проблем технической защиты информации Федеральной службы по техническому и экспортному контролю" Система контроля отсутствия недекларированных возможностей в программном обеспечении
CN102053839A (zh) * 2010-12-31 2011-05-11 山东中创软件商用中间件股份有限公司 监控探针生成方法和装置
FR2977694A1 (fr) 2011-07-08 2013-01-11 St Microelectronics Rousset Microprocesseur protege contre un debordement de pile
US9213828B2 (en) * 2012-02-08 2015-12-15 Arm Limited Data processing apparatus and method for protecting secure data and program code from non-secure access when switching between secure and less secure domains
US9015835B2 (en) * 2013-06-23 2015-04-21 Intel Corporation Systems and methods for procedure return address verification
JP2015011436A (ja) * 2013-06-27 2015-01-19 株式会社デンソー プロセッサ
RU2591020C1 (ru) * 2015-06-01 2016-07-10 Российская Федерация, от имени которой выступает Государственная корпорация по атомной энергии "Росатом" (Госкорпорация "Росатом") Способ контроля хода выполнения программы пользователя, исполняющейся на вычислительных узлах вычислительной системы
US20160381050A1 (en) 2015-06-26 2016-12-29 Intel Corporation Processors, methods, systems, and instructions to protect shadow stacks
US10394556B2 (en) 2015-12-20 2019-08-27 Intel Corporation Hardware apparatuses and methods to switch shadow stack pointers
US10430580B2 (en) 2016-02-04 2019-10-01 Intel Corporation Processor extensions to protect stacks during ring transitions
CN108701193B (zh) * 2016-02-12 2022-08-30 汉阳大学校产学协力团 安全半导体芯片及其工作方法
WO2017138797A1 (ko) * 2016-02-12 2017-08-17 한양대학교 산학협력단 시큐어 시스템 온 칩
JP6489050B2 (ja) * 2016-03-24 2019-03-27 株式会社オートネットワーク技術研究所 情報処理装置及び情報処理システム
US9904485B2 (en) * 2016-03-31 2018-02-27 Intel Corporation Secure memory controller
US10613864B2 (en) 2018-03-16 2020-04-07 Texas Instruments Incorporated Processor with hardware supported memory buffer overflow detection
RU2697948C1 (ru) * 2018-04-19 2019-08-21 Акционерное общество "Лаборатория Касперского" Система и способ выявления уязвимостей с использованием перехвата вызовов функций

Family Cites Families (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4241396A (en) * 1978-10-23 1980-12-23 International Business Machines Corporation Tagged pointer handling apparatus
JPS5568000A (en) * 1978-11-13 1980-05-22 Ibm Maintenance and protection of control storage capable of writing
US4296404A (en) * 1979-10-18 1981-10-20 Engineered Systems, Inc. Remote verification lockout system
US5408642A (en) * 1991-05-24 1995-04-18 Symantec Corporation Method for recovery of a computer program infected by a computer virus
US5274817A (en) * 1991-12-23 1993-12-28 Caterpillar Inc. Method for executing subroutine calls
RU2055588C1 (ru) * 1993-03-03 1996-03-10 Арнольд Аркадиевич Ласков Способ стимуляции работоспособности лошадей
DE4315732C1 (de) * 1993-05-11 1994-06-01 Siemens Nixdorf Inf Syst Verfahren zum authentischen Booten und Testen der Integrität von Software auf PC-Architekturen
FR2728363A1 (fr) * 1994-12-20 1996-06-21 Sgs Thomson Microelectronics Dispositif de protection de l'acces a des mots memoires
DE19614904A1 (de) * 1996-04-16 1997-10-23 Philips Patentverwaltung Verfahren und System zum Freigeben der Ausführung zugelassener Programme
JP3421526B2 (ja) * 1997-02-14 2003-06-30 モトローラ株式会社 デ−タ処理装置

Also Published As

Publication number Publication date
US6202176B1 (en) 2001-03-13
WO1998032072A1 (de) 1998-07-23
CN1248110C (zh) 2006-03-29
DE19701166A1 (de) 1998-07-23
RU2220443C2 (ru) 2003-12-27
ATE200358T1 (de) 2001-04-15
KR20000070127A (ko) 2000-11-25
UA55438C2 (uk) 2003-04-15
JP2001511271A (ja) 2001-08-07
EP0951673B1 (de) 2001-04-04
EP0951673A1 (de) 1999-10-27
BR9806770A (pt) 2000-05-16
CN1243580A (zh) 2000-02-02
DE59800589D1 (de) 2001-05-10

Similar Documents

Publication Publication Date Title
ES2156029T3 (es) Procedimiento para la supervision de la ejecucion prescrita de programas de software.
SV2001000004A (es) Difenil ureas w-carboxyaril sustituidas, composición farmacéutica que las comprende y su uso como inhibidores de raf quinasa
ES2058725T3 (es) Aplicacion transdermica de 2-amino-6-n-propilamino-4,5,6,7-tetrahidrobenzotiazol.
SV1996000114A (es) Nuevos plaguicidas
BR0208076A (pt) Células t cd4*cd25* reguladoras de sangue humano
ES2135075T3 (es) Esquema dinamico de interrupciones de usuario en un controlador logico programable.
ES2081334T3 (es) Sulfonilaminocarboniltriazolinonas halogenadas.
ECSP056029A (es) Formulación para un inhalador con dosis medida que emplea hidrofluoroalcanos como propulsores
ES2213707T3 (es) Estimulacion del crecimiento oseo con un derivado peptidico de la trombina.
ES2067154T3 (es) Dibenzoilalquilcianohidracinas.
AR029838A1 (es) Heterociclos benzonitrogenados sustituidos
BR9909486A (pt) Compostos calcilìticos
GT198277855A (es) Preparacion de premezclas de piensos para animales
BR9812718A (pt) Uso de pelo menos 0,5%, em peso, de água como um aditivo em uma composição de vaporizador para cabelo, e, composição de vaporizador para cabelo
CR9364A (es) Agentes endoparasiticidas
BRPI0302496B8 (pt) composições farmacêuticas com atividade antibiótica
AR018746A1 (es) Composicion liquida desodorante biologica
ES2155442T3 (es) Un derivado de oxazolina, su produccion y su uso.
ES2095955T3 (es) Pirrolsulfonilureas herbicidas.
ES2097218T3 (es) Composicion para las paredes laterales de cubiertas.
PE20020472A1 (es) Uso de un inhibidor del receptor de progesterona para inhibir la fijacion de factores de crecimiento en celulas tumorales
ES2059049T3 (es) Uso de hexametilentetramina como estabilizante para 3-isotiazolonas.
AR020695A1 (es) Metodos para controlar macroinvertebrados en sistemas acuosos
BRPI0408468A (pt) métodos para preparação e uso de 1(alfa),24(s)-diidroxivitamina d2
BR0009194A (pt) Composição do resorcinol

Legal Events

Date Code Title Description
FG2A Definitive protection

Ref document number: 951673

Country of ref document: ES