{"id":"https://openalex.org/W4402706251","doi":"https://doi.org/10.1145/3658644.3690239","title":"The Illusion of Randomness: An Empirical Analysis of Address Space Layout Randomization Implementations","display_name":"The Illusion of Randomness: An Empirical Analysis of Address Space Layout Randomization Implementations","publication_year":2024,"publication_date":"2024-12-02","ids":{"openalex":"https://openalex.org/W4402706251","doi":"https://doi.org/10.1145/3658644.3690239"},"language":"en","primary_location":{"id":"doi:10.1145/3658644.3690239","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3658644.3690239","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3658644.3690239","source":null,"license":"cc-by-nc-sa","license_id":"https://openalex.org/licenses/cc-by-nc-sa","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2024 on ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"preprint","indexed_in":["arxiv","crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3658644.3690239","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5079950118","display_name":"Lorenzo Binosi","orcid":"https://orcid.org/0000-0001-7476-0166"},"institutions":[{"id":"https://openalex.org/I93860229","display_name":"Politecnico di Milano","ror":"https://ror.org/01nffqt88","country_code":"IT","type":"education","lineage":["https://openalex.org/I93860229"]}],"countries":["IT"],"is_corresponding":true,"raw_author_name":"Lorenzo Binosi","raw_affiliation_strings":["Politecnico di Milano, Milano, Italy"],"affiliations":[{"raw_affiliation_string":"Politecnico di Milano, Milano, Italy","institution_ids":["https://openalex.org/I93860229"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5107473264","display_name":"Gregorio Barzasi","orcid":null},"institutions":[{"id":"https://openalex.org/I93860229","display_name":"Politecnico di Milano","ror":"https://ror.org/01nffqt88","country_code":"IT","type":"education","lineage":["https://openalex.org/I93860229"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Gregorio Barzasi","raw_affiliation_strings":["Politecnico di Milano, Milano, Italy"],"affiliations":[{"raw_affiliation_string":"Politecnico di Milano, Milano, Italy","institution_ids":["https://openalex.org/I93860229"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5048211949","display_name":"Michele Carminati","orcid":"https://orcid.org/0000-0001-8284-6074"},"institutions":[{"id":"https://openalex.org/I93860229","display_name":"Politecnico di Milano","ror":"https://ror.org/01nffqt88","country_code":"IT","type":"education","lineage":["https://openalex.org/I93860229"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Michele Carminati","raw_affiliation_strings":["Politecnico di Milano, Milano, Italy"],"affiliations":[{"raw_affiliation_string":"Politecnico di Milano, Milano, Italy","institution_ids":["https://openalex.org/I93860229"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5046604572","display_name":"Stefano Zanero","orcid":"https://orcid.org/0000-0003-4710-5283"},"institutions":[{"id":"https://openalex.org/I93860229","display_name":"Politecnico di Milano","ror":"https://ror.org/01nffqt88","country_code":"IT","type":"education","lineage":["https://openalex.org/I93860229"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Stefano Zanero","raw_affiliation_strings":["Politecnico di Milano, Milano, Italy"],"affiliations":[{"raw_affiliation_string":"Politecnico di Milano, Milano, Italy","institution_ids":["https://openalex.org/I93860229"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5054840981","display_name":"Mario Polino","orcid":"https://orcid.org/0000-0002-0925-2306"},"institutions":[{"id":"https://openalex.org/I93860229","display_name":"Politecnico di Milano","ror":"https://ror.org/01nffqt88","country_code":"IT","type":"education","lineage":["https://openalex.org/I93860229"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Mario Polino","raw_affiliation_strings":["Politecnico di Milano, Milano, Italy"],"affiliations":[{"raw_affiliation_string":"Politecnico di Milano, Milano, Italy","institution_ids":["https://openalex.org/I93860229"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5079950118"],"corresponding_institution_ids":["https://openalex.org/I93860229"],"apc_list":null,"apc_paid":null,"fwci":1.4306,"has_fulltext":true,"cited_by_count":4,"citation_normalized_percentile":{"value":0.82265749,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":97,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"1360","last_page":"1374"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8324882984161377},{"id":"https://openalex.org/keywords/implementation","display_name":"Implementation","score":0.7259314060211182},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.595115065574646},{"id":"https://openalex.org/keywords/randomness","display_name":"Randomness","score":0.5248996019363403},{"id":"https://openalex.org/keywords/address-space","display_name":"Address space","score":0.4984898567199707},{"id":"https://openalex.org/keywords/executable","display_name":"Executable","score":0.44314783811569214},{"id":"https://openalex.org/keywords/toolchain","display_name":"Toolchain","score":0.44012191891670227},{"id":"https://openalex.org/keywords/file-system","display_name":"File system","score":0.43865156173706055},{"id":"https://openalex.org/keywords/leverage","display_name":"Leverage (statistics)","score":0.4323872923851013},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.378327876329422},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.3308008909225464},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.19473394751548767},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.12475869059562683},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.12169438600540161},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.11264145374298096}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8324882984161377},{"id":"https://openalex.org/C26713055","wikidata":"https://www.wikidata.org/wiki/Q245962","display_name":"Implementation","level":2,"score":0.7259314060211182},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.595115065574646},{"id":"https://openalex.org/C125112378","wikidata":"https://www.wikidata.org/wiki/Q176640","display_name":"Randomness","level":2,"score":0.5248996019363403},{"id":"https://openalex.org/C144240696","wikidata":"https://www.wikidata.org/wiki/Q367204","display_name":"Address space","level":2,"score":0.4984898567199707},{"id":"https://openalex.org/C160145156","wikidata":"https://www.wikidata.org/wiki/Q778586","display_name":"Executable","level":2,"score":0.44314783811569214},{"id":"https://openalex.org/C2777062904","wikidata":"https://www.wikidata.org/wiki/Q545406","display_name":"Toolchain","level":3,"score":0.44012191891670227},{"id":"https://openalex.org/C2780940931","wikidata":"https://www.wikidata.org/wiki/Q174989","display_name":"File system","level":2,"score":0.43865156173706055},{"id":"https://openalex.org/C153083717","wikidata":"https://www.wikidata.org/wiki/Q6535263","display_name":"Leverage (statistics)","level":2,"score":0.4323872923851013},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.378327876329422},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.3308008909225464},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.19473394751548767},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.12475869059562683},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.12169438600540161},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.11264145374298096},{"id":"https://openalex.org/C105795698","wikidata":"https://www.wikidata.org/wiki/Q12483","display_name":"Statistics","level":1,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1145/3658644.3690239","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3658644.3690239","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3658644.3690239","source":null,"license":"cc-by-nc-sa","license_id":"https://openalex.org/licenses/cc-by-nc-sa","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2024 on ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},{"id":"pmh:oai:arXiv.org:2408.15107","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2408.15107","pdf_url":"https://arxiv.org/pdf/2408.15107","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-nc-sa","license_id":"https://openalex.org/licenses/cc-by-nc-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},{"id":"pmh:oai:re.public.polimi.it:11311/1278911","is_oa":true,"landing_page_url":"https://hdl.handle.net/11311/1278911","pdf_url":null,"source":{"id":"https://openalex.org/S4306400312","display_name":"Virtual Community of Pathological Anatomy (University of Castilla La Mancha)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I79189158","host_organization_name":"University of Castilla-La Mancha","host_organization_lineage":["https://openalex.org/I79189158"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"info:eu-repo/semantics/conferenceObject"}],"best_oa_location":{"id":"doi:10.1145/3658644.3690239","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3658644.3690239","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3658644.3690239","source":null,"license":"cc-by-nc-sa","license_id":"https://openalex.org/licenses/cc-by-nc-sa","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2024 on ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":false},"content_urls":{"pdf":"https://content.openalex.org/works/W4402706251.pdf"},"referenced_works_count":8,"referenced_works":["https://openalex.org/W1990225450","https://openalex.org/W2035250043","https://openalex.org/W2050416397","https://openalex.org/W2154411999","https://openalex.org/W2954849343","https://openalex.org/W2963120920","https://openalex.org/W2963970827","https://openalex.org/W3207596308"],"related_works":["https://openalex.org/W2013037783","https://openalex.org/W2909413202","https://openalex.org/W4385243142","https://openalex.org/W1999008563","https://openalex.org/W2561644314","https://openalex.org/W2912135124","https://openalex.org/W2794118724","https://openalex.org/W4206450104","https://openalex.org/W2256611834","https://openalex.org/W4281808401"],"abstract_inverted_index":{"Address":[0],"Space":[1],"Layout":[2],"Randomization":[3],"(ASLR)":[4],"is":[5,27],"a":[6,144,187],"crucial":[7],"defense":[8],"mechanism":[9],"employed":[10],"by":[11,18,59],"modern":[12],"operating":[13,204],"systems":[14,205],"to":[15,37,88,100,131,167,214],"mitigate":[16],"exploitation":[17,169],"randomizing":[19],"processes?":[20],"memory":[21,67,82,98],"layouts.":[22],"However,":[23],"the":[24,46,61,64,90,97,149,154,175,195],"stark":[25],"reality":[26],"that":[28,39,106,114,162],"real-world":[29],"implementations":[30],"of":[31,48,66,81,92,151,199],"ASLR":[32,49,200,216],"are":[33],"imperfect":[34],"and":[35,57,73,95,127,139,158,181,206],"subject":[36],"weaknesses":[38,177],"attackers":[40],"can":[41],"exploit.":[42],"This":[43],"work":[44],"evaluates":[45],"effectiveness":[47,201],"on":[50,179],"major":[51],"desktop":[52],"platforms,":[53],"including":[54],"Linux,":[55],"MacOS,":[56,128],"Windows,":[58],"examining":[60],"variability":[62],"in":[63,148],"placement":[65],"objects":[68,105],"across":[69,202],"various":[70],"processes,":[71],"threads,":[72],"system":[74],"restarts.":[75],"In":[76,190],"particular,":[77],"we":[78,142,173],"collect":[79],"samples":[80],"object":[83],"locations,":[84],"conduct":[85],"statistical":[86],"analyses":[87],"measure":[89],"randomness":[91],"these":[93],"placements":[94],"examine":[96],"layout":[99],"find":[101,143],"any":[102],"patterns":[103],"among":[104],"could":[107,165],"decrease":[108],"this":[109,192],"randomness.":[110],"The":[111],"results":[112],"show":[113],"while":[115],"some":[116],"systems,":[117],"like":[118,125,136],"Linux":[119,155],"distributions,":[120],"provide":[121],"robust":[122],"randomization,":[123],"others,":[124],"Windows":[126],"often":[129],"fail":[130],"adequately":[132],"randomize":[133],"key":[134],"areas":[135],"executable":[137],"code":[138],"libraries.":[140],"Moreover,":[141],"significant":[145],"entropy":[146,150,184],"reduction":[147],"libraries":[152],"after":[153],"5.18":[156],"version":[157],"identify":[159],"correlation":[160],"paths":[161],"an":[163],"attacker":[164],"leverage":[166],"reduce":[168],"complexity":[170],"significantly.":[171],"Ultimately,":[172],"rank":[174],"identified":[176],"based":[178],"severity":[180],"validate":[182],"our":[183],"estimates":[185],"with":[186],"proof-of-concept":[188],"attack.":[189],"brief,":[191],"paper":[193],"provides":[194],"first":[196],"comprehensive":[197],"evaluation":[198],"different":[203],"highlights":[207],"opportunities":[208],"for":[209],"Operating":[210],"System":[211],"(OS)":[212],"vendors":[213],"strengthen":[215],"implementations.":[217]},"counts_by_year":[{"year":2025,"cited_by_count":4}],"updated_date":"2026-03-20T23:20:44.827607","created_date":"2025-10-10T00:00:00"}