Odjel za pouzdanost okuplja stručnjake iz raznih disciplina, kojima je zajedničko nastojanje da učine "stvari" pouzdanima. Aktivnosti odjela u raznim poljima tehnologije povezana su s pojmovima pouzdanosti, raspoloživosti, sigurnosti i povjerenja.
Web sjedište matičnog društva IEEE Reliability Society je https://rs.ieee.org/.
Željko Hocenski
Odjel za pouzdanost Hrvatske sekcije IEEE, Odjel za računarstvo, Hrvatska sekcija IEEE i Zavod za elektroniku, mikroelektroniku, računalne i inteligentne sustave FER-a vas pozivaju na predavanje
"ROPGuard: Runtime Prevention of Return-Oriented Programming Attacks"
Dr.sc. Ivan Fratrić
Sveučilište u Zagrebu Fakultet elektrotehnike i računarstva
Predavanje će bit održano u ponedjeljak 24. rujna 2012. godine s početkom u 14:15 u Sivoj vijećnici Fakulteta elektrotehnike i računarstva.
Predavanje je otvoreno su za sve zainteresirane, a posebno pozivamo studente diplomskog i poslijediplomskog studija.
ABSTRACT
Return-oriented programming (ROP) is a state-of-the-art security vulnerability exploitation technique that can be used to bypass the existing defensive technologies such as the data execution prevention (DEP). This makes preventing ROP attacks one of the most pressing challenges in security defense. The talk will describe the basics of return-oriented programming attacks, give an overview of current mitigation attempts as well as present a novel system called ROPGuard that attempts to prevent known ROP attacks at runtime. ROPGuard can detect the currently used ROP attacks, it can be applied to any process at runtime and has a low computation and memory overhead. ROPGuard won the second prize at the Microsoft's BlueHat Prize contest at the Black Hat USA 2012 security conference. ROPGuard technology has also been integrated in the latest version of The Enhanced Mitigation Experience Toolkit (EMET), Microsoft's free tool designed to protect the Windows OS and applications from modern security threats.
BIOGRAPHY
Ivan Fratrić was born in 1980 in Zagreb. He graduated from the Faculty of Electrical Engineering and Computing at the University of Zagreb in 2003. From 2004 he works as a research and teaching assistant at the Department of Electronics, Microelectronics, Computer and Intelligent Systems at the same institution, where he received his MS and PhD degrees in 2007 and 2011, respectively. The research areas of his MS and PhD theses were biometrics, pattern recognition and computer vision. Besides those areas, his research interests also cover the area of information security. He is credited for helping the security efforts of Microsoft, Google and Facebook, among others. For his security defense technology, ROPGuard, he won the second prize at Microsoft's BlueHat Prize contest at the Black Hat USA 2012 security conference. From October 2012 he will work in Google Switzerland GmbH in Zurich on the Information Security Engineering team.
