References:
References: Windows 8 Heap Internals, BlackHat, USA, 2012. Software Defense: Mitigating Heap Corruption Vulnerabilities Heap for Windows Vista/Server2008/Windows7 The following features are enabled by default: Randomized heap base address The base address of a heap region is randomized as part of ASLR; 5 bits of entropy; Function pointer encoding Function pointers in heap data structures are encoded with a random value; This will prevent them from being replaced with an untrusted value; Algorithm variation
If you could revise
the fundmental principles of
computer system design
to improve security...
... what would you change?