Future of Information and Communication Conference (FICC) 2024
4-5 April 2024
Publication Links
IJACSA
Special Issues
Future of Information and Communication Conference (FICC)
Computing Conference
Intelligent Systems Conference (IntelliSys)
Future Technologies Conference (FTC)
International Journal of Advanced Computer Science and Applications(IJACSA), Volume 7 Issue 4, 2016.
Abstract: The weak separation between user- and kernelspace in modern operating systems facilitates several forms of privilege escalation. This paper provides a survey of protection techniques, both cutting-edge and time-tested, used to prevent common privilege escalation attacks. The techniques are compared against each other in terms of their effectiveness, their performance impact, the complexity of their implementation, and their impact on diversification techniques such as ASLR. Overall the literature provides a litany of disjoint techniques, each of which trades some performance cost for effectiveness against a particular isolated threat. No single technique was found to effectively mitigate all known and potential attack vectors with reasonable performance cost overhead.
Scott Brookes and Stephen Taylor, “Containing a Confused Deputy on x86: A Survey of Privilege Escalation Mitigation Techniques” International Journal of Advanced Computer Science and Applications(IJACSA), 7(4), 2016. http://dx.doi.org/10.14569/IJACSA.2016.070463
@article{Brookes2016,
title = {Containing a Confused Deputy on x86: A Survey of Privilege Escalation Mitigation Techniques},
journal = {International Journal of Advanced Computer Science and Applications},
doi = {10.14569/IJACSA.2016.070463},
url = {http://dx.doi.org/10.14569/IJACSA.2016.070463},
year = {2016},
publisher = {The Science and Information Organization},
volume = {7},
number = {4},
author = {Scott Brookes and Stephen Taylor}
}
Copyright Statement: This is an open access article licensed under a Creative Commons Attribution 4.0 International License, which permits unrestricted use, distribution, and reproduction in any medium, even commercially as long as the original work is properly cited.