Security Vulnerabilities - From Data Analysis to Protection Mechanisms

2003 The Ninth IEEE International Workshop on Object-Oriented Real-Time Dependable Systems Pub Date : 2003-12-01 DOI:10.1109/WORDS.2003.1267548

R. Iyer, Shuo Chen, Jun Xu, Z. Kalbarczyk

{"title":"Security Vulnerabilities - From Data Analysis to Protection Mechanisms","authors":"R. Iyer, Shuo Chen, Jun Xu, Z. Kalbarczyk","doi":"10.1109/WORDS.2003.1267548","DOIUrl":null,"url":null,"abstract":"This paper combines an analysis of data on security vulnerabilities (published in the Bugtraq database) and a focused source-code examination to (i) develop a finite state machine (FSM) model to depict and reason about security vulnerabilities and (ii) to extract characteristics shared by a large class of commonly seen vulnerabilities (e.g., integer overflow, heap overflow, format string, and stack buffer overflow). This information is used to devise Transparent Runtime Randomization (TRR), a generic, randomization-based technique for protecting against a wide range of security attacks. TRR dynamically and randomly relocates a program’s stack, heap, shared libraries, and parts of its runtime control data structures inside the application memory address space. Making a program’s memory layout different each time it runs foils the attacker’s assumptions about the memory layout of the vulnerable program and defeats potential attacks. TRR is implemented by changing the Linux dynamic program loader; hence, it is transparent to applications. TRR incurs less than 9% program startup overhead and no runtime overhead.","PeriodicalId":350761,"journal":{"name":"2003 The Ninth IEEE International Workshop on Object-Oriented Real-Time Dependable Systems","volume":"50 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2003-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"10","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2003 The Ninth IEEE International Workshop on Object-Oriented Real-Time Dependable Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/WORDS.2003.1267548","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 10

Abstract

This paper combines an analysis of data on security vulnerabilities (published in the Bugtraq database) and a focused source-code examination to (i) develop a finite state machine (FSM) model to depict and reason about security vulnerabilities and (ii) to extract characteristics shared by a large class of commonly seen vulnerabilities (e.g., integer overflow, heap overflow, format string, and stack buffer overflow). This information is used to devise Transparent Runtime Randomization (TRR), a generic, randomization-based technique for protecting against a wide range of security attacks. TRR dynamically and randomly relocates a program’s stack, heap, shared libraries, and parts of its runtime control data structures inside the application memory address space. Making a program’s memory layout different each time it runs foils the attacker’s assumptions about the memory layout of the vulnerable program and defeats potential attacks. TRR is implemented by changing the Linux dynamic program loader; hence, it is transparent to applications. TRR incurs less than 9% program startup overhead and no runtime overhead.

查看原文本刊更多论文

安全漏洞-从数据分析到保护机制

本文结合了对安全漏洞数据的分析(发表在Bugtraq数据库中)和集中的源代码检查，以(i)开发有限状态机(FSM)模型来描述和推理安全漏洞;(ii)提取一大类常见漏洞(例如整数溢出、堆溢出、格式字符串和堆栈缓冲区溢出)共有的特征。此信息用于设计透明运行时随机化(TRR)，这是一种基于随机化的通用技术，用于防止各种安全攻击。TRR动态地、随机地在应用程序内存地址空间内重新定位程序的堆栈、堆、共享库和部分运行时控制数据结构。使程序每次运行时的内存布局不同，可以挫败攻击者对易受攻击程序的内存布局的假设，从而挫败潜在的攻击。TRR是通过改变Linux动态程序加载器实现的;因此，它对应用程序是透明的。TRR产生的程序启动开销小于9%，并且没有运行时开销。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2003 The Ninth IEEE International Workshop on Object-Oriented Real-Time Dependable Systems

自引率

0.00%

发文量