Execution transactions for defending against software failures: Use and evaluation

International Journal of Information Security

Volumn 5, Issue 2, 2006, Pages 77-91

  Sidiroglou, Stelios ^a   Keromytis, Angelos D ^a  

^a Columbia University ^*  (United States)

Author keywords

Buffer overflows; Exception; Transactional execution

Indexed keywords

EID: 33646001408     PISSN: 16155262     EISSN: 16155270     Source Type: Journal    
DOI: 10.1007/s10207-006-0083-6     Document Type: Article

References (98)

1. Acharya, A., Raje, M.: Mapbox: Using parameterized behavior classes to confine applications. In: Proceedings of the 9th USENIX Security Symposium, pp. 1-17 (2000)
2. Aleph One: Smashing the stack for fun and profit. Phrack 7 (1996)
3. Alexandrov, A., Kmiec, P., Schauser, K.: Consh: A confined execution environment for Internet computations (1998)
4. Arce, I.: The Shellcode generation. IEEE Secur. Priv. 2, 72-76 (2004)
5. Bailey, M., Cooke, E., Jahanian, F., Nazario, J., Watson, D.: The Internet motion sensor: A distributed blackhole monitoring system. In: Proceedings of the ISOC Symposium on Network and Distributed Systems Security (SNDSS), pp. 167-179 (2005)
6. Balzer, R., Goldman, N.: Mediating connectors: A non-bypassable process wrapping technology. In: Proceedings of the 19th IEEE International Conference on Distributed Computing Systems (1999)
7. Baratloo, A., Singh, N., Tsai, T.: Transparent run-time defense against stack smashing attacks. In: Proceedings of the USENIX Annual Technical Conference (2000)
8. Berman, A., Bourassa, V., Selberg, E.: TRON: Process-specific file protection for the UNIX operating system. In: Proceedings of the USENIX Technical Conference (1995)
9. Brumley, D., Song, D.: Privtrans: Automatically partitioning programs for privilege separation. In: Proceedings of the 13th USENIX Security Symposium, pp. 57-71 (2004)
10. Bulba, K.: Bypassing StackGuard and StackShield. Phrack 5 (2000)
11. Candea, G., Fox, A.: Crash-only software. In: Proceedings of the 9th Workshop on Hot Topics in Operating Systems (2003)
12. Candea, G., Fox, A.: Recursive restartability: Turning the reboot sledgehammer into a scalpel. In: Proceedings of the 8th Workshop on Hot Topics in Operating Systems (HotOS-VIII), pp. 110-115 Schloss Elmau, Germany, IEEE Computer Society, (2001)
13. CERT Advisory CA-2001-19: 'Code Red' Worm Exploiting Buffer Overflow in IIS Indexing Service DLL. http://www.cert.org/advisories/CA-2001-19.html (2001)
14. Cert Advisory CA-2003-04: MS-SQL Server Worm. http://www.cert.org/ advisories/CA-2003-04.html (2003)
15. Chen, H., Dean, D., Wagner, D.: Model checking one million lines of C code. In: Proceedings of the Network and Distributed System Security (NDSS) Symposium, pp. 171-185 (2004)
16. Ahen, H., Wagner, D.: MOPS: an infrastructure for examining security properties of software. In: Proceedings of the ACM Computer and Communications Security (CCS) Conference, pp. 235-244 (2002)
17. Chess, B., McGraw, G.: Static analysis for security. IEEE Secur. Priv. 2, 76-79 (2004)
18. Christodorescu, M., Jha, S.: Static analysis of executables to detect malicious patterns. In: Proceedings of the 12th USENIX Security Symposium, pp. 169-186 (2003)
19. Cohen, F.: CTmputer viruses: theory and practice. Comput. Secur. 6, 22-35 (1987)
20. Costa, M., Crowcroft, J., Castro, M., Rowstron, A., Zhou, L., Zhang, L., BarhaN, P.: Vigilante:end-to-end containment of Internet worms. In: SOSP '05: Proceedings of the Twentieth ACM symposium on Operating systems principles, vol. 39, pp. 133-147. ACM, New York (2005)
21. Cowan, C., Beattie, S., Pu, C., Wagle, P., Gligor, V.: SubDomain: parsimonious security for server appliances. In: Proceedings of the 14th USENIX System Administration Conference (LISA 2000) (2000)
22. Cowan, C., Pu, C., Maier, D., Hinton, H., Walpole, J., Bakke, P., BeattiA, S., Grier, A., Wagle, P., Zhang, Q.: StackGuard: automatic adaptive detection and prevention of buffer-overflow attacks. In: Proceedings of the 7th USENIX Security Symposium (1998)
23. Dagon, D., Qin, X., Gu, G., Lee, W., Grizzard, J., Levine, J., Owen, H.: HoneyStat: Local worm detection using Honepots. In: Proceedings of the 7th International Symposium on Recent Advances in Intrusion Detection (RAID), pp. 39-58 (2004)
24. Demsky, B., Rinard, M.C.: Automatic detection and repair of errors in data structures. In: Proceedings of the 18th Annual ACM SIGPLAN Conference on Object-Oriented Programming, Systems, Languages, and Application (OOPSLA) (2003)
25. Demsky, B., Rinard, M.C.: Automatic detection and repair of errors in data structures. In: Proceedings of the 18th Annual ACM SIGPLAN Conference on Object Oriented Programming, Systems, Languages, and Applications (2003)
26. Dor, N., Rodeh, M., Sagiv, M.: CSSV: Towards a realistic tool for statically detecting all buffer overflows in C. In: Proceedings of the ACM Conference on Programming Language Design and Implementation (PLDI) (2003)
27. Engler, D., Ashcraft, K.: RacerX: Effective, static detection of race conditions and deadlocks. In: Proceedings of ACM SOSP (2003)
28. Etoh, J.: GCC extension for protecting applications from stack-smashing attacks. http://www.trl.ibm.com/projects/security/ssp/ (2000)
29. Foster, J., Faḧndrich, M., Aiken, A.: A theory of type qualifiers. In: Proceedings of the ACM SIGPLAN Conference on Programming Language Design and Implementation (PLDI) (1999)
30. Fraser, T., Badger, L., Feldman, M.: Hardening COTS software with generic software wrappers. In: Proceedings of the IEEE Symposium on Security and Privacy. Oakland, CA (1999)
31. Garber, L.: New chips stop buffer overflow attacks. IEEE Comput. 37, 28 (2004)
32. Garfinkel, T., Pfaff, B., Rosenblum, M.: Ostia: A delegating architecture for secure system call interposition. In: Proceedings of the Network and Distributed System Security (NDSS) Symposium, pp. 187-201 (2004)
33. Garfinkel, T.: Traps and pitfalls: Practical problems in system call interposition based security tools. In: Proceedings of the Symposium on Network and Distributed Systems Security (SNDSS), pp. 163-176 (2003)
34. Ahormley, D.P., Petrou, D., Rodrigues, S.H., Anderson, T.E.: SLIC: an extensibility system for commodity operating systems. In: Proceedings of the 1998 USENIX Annual Technical Conference, pp. 39-52 (1998)
35. Goldberg, I., Wagner, D., Thomas, R., Brewer, E.A.: A secure environment for untrusted helper applications. In: Procedings of the 1996 USENIX Annual Technical Conference (1996)
36. Grübacher, A.: POSIX access control lists on Linux. In: Proceedings of the USENIX Technical Conference, Freenix Track, pp. 259-272 (2003)
37. Hernacki, B., Bennett, J., Lofgren, T.: Symantec deception server experience with a commercial deception system. In: Proceedings of the 7th International Symposiun on Recent Advanced in Intrusion Detection (RAID), pp. 188-202 (2004)
38. Ioannidis, S., BeAlovin, S., Smith, J.M.: Sub-operating systems: a new approach to application security. In: Proceedings 10th SIGOPS European Workshop, pp. 108-115 (2002)
39. Ioannidis, S., Bellovin, S.M.: Building a secure browser. In: Proceedings of the Annual USENIX Technical Conference, Freenix Track, pp. 127-134 (2001)
40. Cordy, J.R., Dean, T.R., Schneider, K.: Source transformation in software engineering using the TXL transformation system. J. Inf. Software Technol. 44, 827-837 (2002)
41. Johnson, R., Wagner, D.: Finding user/kernel pointer bugs with type inference. In: Proceedings for the 13th USENIX Security Symposium, pp. 119-134 (2004)
42. Jones, R.W.M., Kelly, P.H.J.: Backwards-compatible bounds checking for arrays and pointers in C programs. In: Third International Workshop on Automated Debugging (1997)
43. Kephart, J.O.: A biologically inspired immune system for computers. In: Artificial Life IV: Proceedings of the Fourth International Workshop on the Synthesis and Simulation of Living Systems, pp. 130-139. MIT Press, Cambridge, MA (1994)
44. Kilpatrick, D.: Privman: A library for partitioning applications. In: Proceedings of the USENIX Technical Conference, Freenix Track, pp. 273-284 (2003)
45. Kiriansky, V., Bruening, D., Amarasinghe, S.: Secure execution via program shepherding. In: Proceedings of the 11th USENIX Security Symposium, pp. 191-205 (2002)
46. Larochelle, D., Evans, D.: Statically detecting likely buffer overflow vulnerabilities. In: Proceedings of the 10th USENIX Security Symposium, pp. 177-190 (2001)
47. Larson, E., Austin, T.: High coverage detection of input-related security faults. In: Proceedings of the 12th USENIX Security Symposium, pp. 121-136 (2003)
48. Levy, E.: Crossover: Online pests plaguing the offline world. IEEE Secur. Priv. 1, 71-73 (2003)
49. Lhee, K., Chapin, S.J.: Type-assisted dynamic buffer overflow detection. In: Proceedings of the 11th USENIX Security Symposium, pp. 81-90 (2002)
50. Lin, M.J., Ricciardi, A., Marzullo, K.: A new model for availability in the face of self-propagating attacks. In: Proceedings of the New Security Paradigms Workshop (1998)
51. Liston, T.: Welcome To My Tarpit: The Tactical and Strategic Use of LaBrea. http://www.threenorth.com/LaBrea/LaBrea.txt (2001)
52. Loscocco, P., Smalley, S.: Integrating flexible support for security policies into the Linux operating system. In: Proceedings of the USENIX Annual Technical Conference, Freenix Track, pp. 29-40 (2001)
53. Vojnovic, M., Ganesh, A.: On the effectiveness of automatic patching. In: WORM '05 (2005)
54. Mitchem, T., Lu, R., O'Brien, R.: Using kernel hypervisors to secure applications. In: Proceedings of the Annual Computer Security Applications Conference (1997)
55. MoorA, D., Shanning, C., Claffy, K.: Code-Red: a case study on the spread and victims of an Internet worm. In: Proceedings of the 2nd Internet Measurement Workshop (IMW), pp. 273-284 (2002)
56. Moore, D., Shannon, C., Voelker, G., Savage, S.: Internet quarantine: requirements for containing self-propagating code. In: Proceedings of the IEEE Infocom Conference (2003)
57. NeTula, G.C., McPeak, S., Weimer, W.: CCured: type-safe retrofitting of legacy code. In: Proceedings of the Principles of Programming Languages (PoPL) (2002)
58. Newsome, J., Song, D.: Dynamic taint analysis for automatic detection, analysis, and signature generation of exploits on commodity software. In: The 12th Annual Network and Distributed System Security Symposium (2005)
59. Nicol, D., Liljenstam, M.: Models of active worm defenses. In: Proceedings of the Measurement, Modeling and Analysis of the Internet Workshop (IMA) (2004)
60. Pasupulati, A., Coit, J., Levitt, K., Wu, S., Li, S., Kuo, J., Fan, K.: Buttercup: On network-based detection of polymorphic buffer overflow vulnerabilities. In: Proceedings of the Network Operations and Management Symposium (NOMS), vol. 1, pp. 235-248 (2004)
61. Peterson, D.S., Bishop, M., Pandey, R.: A flexible containment mechanism for executing untrusted code. In: Proceedings of the 11th USENIX Security Symposium, pp. 207-225 (2002)
62. Pincus, J., BakerR B.: Beyond stack smashing: recent advances in exploiting buffer overflows. IEEE Secur. Priv. 2, 20-27 (2004)
63. Prevelakis, V., Spinellis, D.: Sandboxing applications. In: Proceedings of the USENIX Technical Annual Conference, Freenix Track, pp. 119-126 (2001)
64. Provos, N., Friedl, M., Honeyman, P.: Preventing privilege escalation. In: Proceedings of the 12th USENIX Security Symposium, pp. 231-242 (2003)
65. Provos, N.: A virtual Honeypot framework. In: Proceedings of the 13th USENIX Security Symposium, pp. 1-14 (2004)
66. Provos, N.: Improving host security with system call policies. In: Proceedings of the 12th USENIX Security Symposium, pp. 257-272 (2003)
67. Reynolds, J.C., Just, J., Clough, L., Maglich, R.: On-line intrusion detection and attack prevention using diversity, generate-and-test, and generalization. In: Proceedings of the 36th Annual Hawaii International Conference on System Sciences (HICSS) (2003)
68. Rinard, M., Cadar, C., Dumitran, D., Roy, D., Leu, T., Beebee, J.: Enhancing server availability and security through failure-oblivious computing. In: Proceedings 6th Symposium on Operating Systems Design and Implementation (OSDI) (2004)
69. Rinard, M., Cadar, C., Dumitran, D., Roy, D., Leu, T.: A dynamic technique for eliminating buffer overflow vulnerabilities (and other memory errors). In: Proceedings 20th Annual Computer Security Applications Conference (ACSAC) (2004)
70. Rudys, A., Wallach, D.S.: Termination in language-based systems. ACM Trans. Inf. Syst. Secur. 5 (2002)
71. Rudys, A., Wallach, D.S.: Transactional rollback for language-based systems. In: ISOC Symposium on Network and Distributed Systems Security (SNDSS) (2001)
72. Ruwase, O., Lam, M.S.: A practical dynamic buffer overflow detector. In: Proceedings of the Network and Distributed System Security (NDSS) Symposium, pp. 159-169 (2004)
73. Sekar, R., Venkatakrishnan, V.N., Basu, S., Bhatkar, S., DuVarney, D.C.: Model-carrying code: A practical approach for safe execution of untrusted applications. In: Proceedings of ACM SOSP (2003)
74. Shankar, U., Talwar, K., Foster, J.S., Wagner, D.: Detecting format string vulnerabilities with type qualifiers. In: Proceedings of the 10th USENIX Security Symposium, pp. 201-216 (2001)
75. Shannon, C., Moore, D.: The spread of the Witty worm. IEEE Secur. Priv. 2, 46-50 (2004)
76. Sidiroglou, S., Keromytis, A.D.: A network worm vaccine architecture. In: Proceedings of the IEEE Workshop on Enterprise Technologies: Infrastructure for Collaborative Enterprises (WETICE), Workshop on Enterprise Security, pp. 220-225 (2003)
77. Sidiroglou, S., Keromytis, A.D.: Countering network worms through automatic patch generation. IEEE Secur. Priv. (2005) (to appear).
78. Smirnov, A., Chiueh, T.: DIRA: Automatic detection, identification, and repair of control-hijacking attacks. In: Proceedings of the 12th ISOC Symposium on Network and Distributed System Security (SNDSS) (2005)
79. Song, D., Malan, R., Stone, R.: A Snapshot of Global Internet Worm Activity. Technical report, Arbor Networks (2001)
80. Staniford, S., Paxson, V., Weaver, N.: How to own the Internet in your spare time. In: Proceedings of the 11th USENIX Security Symposium, pp. 149-167 (2002)
81. Steven, A.: Defeating compiler-level buffer overflow protection. USENIX;login: 30, 59-71 (2005)
82. Suh, G.E., Lee, J.W., Zhang, D., Devadas, S.: Secure program execution via dynamic information flow tracking. SIGOPS Oper. Syst. Rev. 38, 85-96 (2004)
83. Sun, W., Liang, Z., Sekar, R., Venkatakrishnan, V.N.: One-way isolation: an effective approach for realizing safe execution environments. In: Proceedings of the 12th ISOC Symposium on Network and Distributed Systems Security (SNDSS), pp. 265-278 (2005)
84. Ször, P., Ferrie, P.: Hunting for Metamorphic. Technical report, Symantec (2003)
85. The Spread of the Sapphire/Slammer Worm. http://www.silicondefense.com/ research/worms/slammer.php (2003)
86. Toth, T., Kruegel, C.: Connection-history based anomaly detection. In: Proceedings of the IEEE Workshop on Information Assurance and Security (2002)
87. Twycross, J., Williamson, M.M.: Implementing and testing a virus throttle. In: Proceedings of the 12th USENIX Security Symposium, pp. 285-294 (2003)
88. Vendicator: Stack shield. http://www.angelfire.com/sk/stackshield/ (2000)
89. Wagner, D., Foster, J.S., Brewer, E.A., Aiken, A.: A first step towards automated detection of buffer overrun vulnerabilities. In: Network and Distributed System Security Symposium, pp. 3-17 (2000)
90. Walker, K.M., Stern, D.F., Badger, L., Oosendorp, K.A., Petkac, M.J., Sherman, D.L.: Confining root programs with domain and type enforcement. In: Proceedings of the 1996 USENIX Security Symposium, pp. 21-36 (1996)
91. Wang, H.J., Guo, C., Simon, D.R., Zugenmaier, A.: Shield: vulnerability-driven network filters for preventing known vulnerability exploits. In: Proceedings of the ACM SIGCOMM Conference (2004)
92. Wang, N., Fertig, M., Patel, S.: Y-Branches: When you come to a fork in the road, take it. In: Proceedings of the 12th International Conference on Parallel Architectures and Compilation Techniques (2003)
93. WatsonA R.N.M.: TrustedBSD: adding trusted operating system features to FreeBSD. In: Proceedings of the USENIX Annual Technical Conference, Freenix Track, pp. 15-28 (2001)
94. Weaver, N., Staniford, S., Paxson, V.: Very fast containment of scanning worms. In: Proceedings of the 13th USENIX Security Symposium, pp. 29-44 (2004)
95. Wong, C., Wang, C., Song, D., Bielski, S., Ganger, G.R.: Dynamic quarantine of Internet worms. In: DSN '04: Proceedings of the 2004 International Conference on Dependable Systems and Networks (DSN'04), p. 73. Washington, DC, IEEE Computer Society, (2004)
96. Yegneswaran, V., Barford, P., Plonka, D.: On the design and use of Internet sinks for network abuse monitoring. In: Proceedings of the 7th International Symposium on Recent Advances in Intrusion Detection (RAID), pp. 146-165 (2004)
97. Zou, C.C., Gao, L., Gong, W., Towsley, D.: Monitoring and early warning for Internet worms. In: Proceedings of the 10th ACM International Conference on Computer and Communications Security (CCS), pp. 190-199 (2003)
98. Zou, C.C., Gong, W., Towsley, D.: Code Red worm propagation modeling and analysis. In: Proceedings of the 9th ACM Conference on Computer and Communications Security (CCS), pp. 138-147 (2002)