System Security
系统安全课程研究操作系统与底层软件的安全机制。内容包括内存保护、访问控制、权限管理、缓冲区溢出攻击与防御、ROP攻击、内核漏洞利用、沙箱机制、可信计算与安全启动。学生将学习二进制分析、漏洞挖掘与利用技术,以及现代操作系统(Linux、Windows)的安全加固方法。
System Security examines security mechanisms of operating systems and low-level software. Topics include memory protection, access control, privilege management, buffer overflow attacks and defenses, ROP attacks, kernel vulnerability exploitation, sandboxing, trusted computing, and secure boot. Students learn binary analysis, vulnerability discovery and exploitation, and security hardening of modern operating systems (Linux, Windows).
分析给定存在漏洞的二进制程序,编写利用代码实现栈溢出与ROP攻击,并使用ASLR、NX、Stack Canary等防护机制加固程序,提交利用脚本与防护对比报告。
Analyze a vulnerable binary program, write exploit code for stack overflow and ROP attacks, and harden the program using ASLR, NX, and Stack Canary defenses. Submit exploit scripts and a comparative defense report.