Evaluating the security threat of firewall data corruption caused by instruction transient errors

Proceedings. International Conference on Dependable Systems and Networks Pub Date : 2002-12-10 DOI:10.1109/DSN.2002.1028938

Shuo Chen, Jun Xu, R. Iyer, K. Whisnant

{"title":"Evaluating the security threat of firewall data corruption caused by instruction transient errors","authors":"Shuo Chen, Jun Xu, R. Iyer, K. Whisnant","doi":"10.1109/DSN.2002.1028938","DOIUrl":null,"url":null,"abstract":"This paper experimentally evaluates and models the error-caused security vulnerabilities and the resulting security violations of two Linux kernel firewalls: IPChains and Netfilter. There are two major aspects to this work: to conduct extensive error injection experiments on the Linux kernel and to quantify the possibility of error-caused security violations using a SAN (Stochastic Activity Network) model. The error injection experiments show that about 2% of errors injected into the firewall code segment cause security vulnerabilities. Two types of error-caused security vulnerabilities are distinguished: temporary, which disappear when the error disappears, and permanent, which persist even after the error is removed, as long as the system is not rebooted. Results from simulating the SAN model indicate that under an error rate of 0.1 error/day during a 1-year period in a networked system protected by 20 firewalls, 2 machines (on the average) will experience security violations. This indicates that error-caused security vulnerabilities can be a non-negligible source of a security threats to a highly secure system.","PeriodicalId":93807,"journal":{"name":"Proceedings. International Conference on Dependable Systems and Networks","volume":"17 1","pages":"495-504"},"PeriodicalIF":0.0000,"publicationDate":"2002-12-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"23","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings. International Conference on Dependable Systems and Networks","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/DSN.2002.1028938","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 23

Abstract

This paper experimentally evaluates and models the error-caused security vulnerabilities and the resulting security violations of two Linux kernel firewalls: IPChains and Netfilter. There are two major aspects to this work: to conduct extensive error injection experiments on the Linux kernel and to quantify the possibility of error-caused security violations using a SAN (Stochastic Activity Network) model. The error injection experiments show that about 2% of errors injected into the firewall code segment cause security vulnerabilities. Two types of error-caused security vulnerabilities are distinguished: temporary, which disappear when the error disappears, and permanent, which persist even after the error is removed, as long as the system is not rebooted. Results from simulating the SAN model indicate that under an error rate of 0.1 error/day during a 1-year period in a networked system protected by 20 firewalls, 2 machines (on the average) will experience security violations. This indicates that error-caused security vulnerabilities can be a non-negligible source of a security threats to a highly secure system.

查看原文本刊更多论文

评估指令瞬态错误导致防火墙数据损坏的安全威胁

本文对两种Linux内核防火墙(IPChains和Netfilter)的错误导致的安全漏洞和由此导致的安全违规进行了实验评估和建模。这项工作有两个主要方面:在Linux内核上进行广泛的错误注入实验，并使用SAN(随机活动网络)模型量化错误引起的安全违规的可能性。错误注入实验表明，注入防火墙代码段的错误中约有2%会导致安全漏洞。错误导致的安全漏洞有两种类型:临时漏洞，当错误消失时也会消失;永久性漏洞，即使在错误消除后，只要系统不重新启动，它也会持续存在。模拟SAN模型的结果表明，在由20个防火墙保护的网络系统中，在1年期间错误率为每天0.1个错误的情况下，有2台机器(平均)将遇到安全违规。这表明错误导致的安全漏洞可能是高度安全系统的安全威胁的不可忽视的来源。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings. International Conference on Dependable Systems and Networks

自引率

0.00%

发文量