Linux Security Summit 2013/Abstracts/Cook

From Linux Kernel Security Subsystem
Jump to navigation Jump to search


Linux Kernel ASLR


Kees Cook, Google


Address Space Layout Randomization has been successfully used as a statistical defense against vulnerability exploitation in userspace for some time now. Applying it to the kernel has benefits as well, though they are somewhat more limited in scope.

This talk will explore the benefits, down-sides, and scenarios for successful application. Implementation details and a demonstration will be shown, along with a discussion of the what kASLR means for information leaks.