sponsors
usenix conference policies
You are here
Effective Entropy: Security-Centric Metric for Memory Randomization Techniques
William Herlands, Thomas Hobson, and Paula J. Donovan, MIT Lincoln Laboratory
User space memory randomization techniques are an emerging field of cyber defensive technology which attempts to protect computing systems by randomizing the layout of memory. Quantitative metrics are needed to evaluate their effectiveness at securing systems against modern adversaries and to compare between randomization technologies. We introduce Effective Entropy, a measure of entropy in user space memory which quantitatively considers an adversary’s ability to leverage low entropy regions of memory via absolute and dynamic inter-section connections. Effective Entropy is indicative of adversary workload and enables comparison between different randomization techniques. Using Effective Entropy, we present a comparison of static Address Space Layout Randomization (ASLR), Position Independent Executable (PIE) ASLR, and a theoretical fine grain randomization technique.
Open Access Media
USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.
author = {William Herlands and Thomas Hobson and Paula J. Donovan},
title = {Effective Entropy: {Security-Centric} Metric for Memory Randomization Techniques},
booktitle = {7th Workshop on Cyber Security Experimentation and Test (CSET 14)},
year = {2014},
address = {San Diego, CA},
url = {https://www.usenix.org/conference/cset14/workshop-program/presentation/herlands},
publisher = {USENIX Association},
month = aug
}
connect with us