On Running Disabled Networking Features: A Taxonomy with Security Implications

2024 16th International Conference on COMmunication Systems & NETworkS (COMSNETS) Pub Date : 2024-01-03 DOI:10.1109/COMSNETS59351.2024.10427438

Dtv Ramakrishna Rao, Manjul Khandelwal

引用次数: 0

Abstract

The attack surface of a networking system is related to the number of features it supports. To reduce attack surface of the system, an important step is to disable unused features. Generally, this practice is considered sufficient to tackle the security implications of the unused features. This paper argues that this practice is necessary but not sufficient. To support this thesis, a taxonomy is provided which illustrates various ways in which a seemingly disabled feature may get a chance to run.

查看原文本刊更多论文

关于运行被禁用的网络功能：具有安全含义的分类标准

网络系统的攻击面与其支持的功能数量有关。要减少系统的攻击面，一个重要步骤就是禁用未使用的功能。一般认为，这种做法足以解决未使用功能的安全问题。本文认为这种做法是必要的，但还不够。为了支持这一论点，本文提供了一个分类法，说明了看似禁用的功能可能有机会运行的各种方式。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2024 16th International Conference on COMmunication Systems & NETworkS (COMSNETS)

自引率

0.00%

发文量