A security architect is developing an information system for a client. One of the requirements is to deliver a platform that mitigates against common vulnerabilities and attacks, What is the MOST efficient option used to prevent buffer overflow attacks?
Correct Answer: B
The most efficient option used to prevent buffer overflow attacks is Address Space Layout Randomization (ASLR). A buffer overflow attack is a type of attack that exploits a vulnerability in the memory allocation of a program, by sending more data than the buffer can hold, and overwriting the adjacent memory locations, such as the return address or the function pointer. A buffer overflow attack can cause the program to crash, execute arbitrary code, or escalate privileges. ASLR is a security technique that randomizes the memory layout of a program, such as the base address, the stack, the heap, or the libraries, making it harder for the attacker to predict or locate the target memory locations. ASLR can prevent buffer overflow attacks by increasing the entropy and complexity of the memory space, and by reducing the chances of successful exploitation34.
References: CISSP CBK, Fifth Edition, Chapter 3, page 236; 2024 Pass4itsure CISSP Dumps, Question 15.