This Article 
   
 Share 
   
 Bibliographic References 
   
 Add to: 
 
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb
 
 Search 
   
The Security Challenges of Client-Side Just-in-Time Engines
March/April 2012 (vol. 10 no. 2)
pp. 84-86
Chris Rohlf, Leaf SR
Yan Ivnitskiy, Matasano Security
Any added complexity in a software system will increase the possible program states, introducing a larger attack surface and the possibility of more exploitable flaws. JIT engines, however, alter the environment in which they execute in far more interesting ways, not only through implementation flaws but also by their fundamental operation modes.
Index Terms:
just in time, JIT, JavaScript, JIT compilers, JIT engines, data execution protection, DEP, Address Space Layout Randomization, ASLR, security vulnerabilities, memory safety exploits, computer security
Citation:
Chris Rohlf, Yan Ivnitskiy, "The Security Challenges of Client-Side Just-in-Time Engines," IEEE Security & Privacy, vol. 10, no. 2, pp. 84-86, March-April 2012, doi:10.1109/MSP.2012.53
Usage of this product signifies your acceptance of the Terms of Use.