Serial hacker says latest Android will be “pretty hard” to exploit
-
Android version 4.1, aka Jelly Bean, is the first version of the Google-developed OS to properly implement a protection known as address space layout randomization. ASLR randomizes the memory locations for the library, stack, heap, and most other OS data structures. As a result, hackers who exploit memory corruption bugs that inevitably crop up in complex pieces of code are unable to know in advance where their malicious payloads will be loaded. When combined with a separate defense known as data execution prevention, ASLR can effectively neutralize such attacks.
Too bad this is available for... almost nobody.
-
Android version 4.1, aka Jelly Bean, is the first version of the Google-developed OS to properly implement a protection known as address space layout randomization. ASLR randomizes the memory locations for the library, stack, heap, and most other OS data structures. As a result, hackers who exploit memory corruption bugs that inevitably crop up in complex pieces of code are unable to know in advance where their malicious payloads will be loaded. When combined with a separate defense known as data execution prevention, ASLR can effectively neutralize such attacks.
Too bad this is available for... almost nobody.
Terrence Dorsey wrote:
Too bad this is available for... almost nobody.
Yes, my HTC Desire HD is not going to be upgraded to Jelly Bean. :( http://blog.htc.com/2012/03/ics/#disqus_thread[^]