Linux Security Summit 2013/Abstracts/Cook
Linux Kernel ASLR
Kees Cook, Google
Address Space Layout Randomization has been successfully used as a statistical defense against vulnerability exploitation in userspace for some time now. Applying it to the kernel has benefits as well, though they are somewhat more limited in scope.
This talk will explore the benefits, down-sides, and scenarios for successful application. Implementation details and a demonstration will be shown, along with a discussion of the what kASLR means for information leaks.