Binary translation and randomization system for application security

Assignee

• Cisco Technology, Inc. · US

Inventors

• Maksim V. Panchenko · Mountain View, US
• Joe Epstein · Pleasanton, US
• Jan Civlin · Sunnyvale, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F21/14
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

In one embodiment, methods are described to provide a binary translation and randomization system. Relocation metadata is received, which comprises, for each of a plurality of execution units in an executable file, a mapping from the executable file into an address space range. For at least one of the plurality of execution units, the mapping is modified to replace instructions within the address space range with a relocated copy of the instructions at a randomly located address space range. An order of the plurality of execution units may thus be modified. An image is generated from the executable file using the relocation metadata, and an execution of the image is caused. The randomization may be carried out in two passes to provide executable files that are uniquely randomized for each computer and for each execution.