Practical taint-based protection using demand emulation

Proceedings of the 2006 EuroSys Conference

Volumn , Issue , 2006, Pages 29-41

  Ho, Alex ^a   Fetterman, Michael ^a,b   Clark, Christopher ^a   Warfield, Andrew ^a   Hand, Steven ^a  

^a UNIVERSITY OF CAMBRIDGE   (United Kingdom)

^b Intel Corporation   (United Kingdom)

Author keywords

Demand emulation; Emulation; False tainting; QEMU; Tainting; Virtual machine; Virtualization; Xen

Indexed keywords

CODES (SYMBOLS); COMPUTER SOFTWARE; INPUT OUTPUT PROGRAMS; VIRTUAL REALITY;

DEMAND EMULATION; FALSE TAINTING; VIRTUAL MACHINES;

SECURITY OF DATA;

EID: 34748845128     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1217935.1217939     Document Type: Conference Paper

References (30)

1. James Newsome and Dawn Song. Dynamic Taint Analysis for Automatic Detection, Analysis, and Signature Generation of Exploits on Commodity Software. In Proceedings of the 12th Annual Network and Distributed System Security Symposium, February 2005.
2. Vladimir Kiriansky, Derek Bruening, and Saman Amarasinghe. Secure Execution Via Program Shepherding. In Proceedings of the 11th USENIX Security Symposium, August 2002.
3. Wei Xu, Sandeep Bhatkar, and R. Sekar. A Unified Approach for Preventing Attacks Exploiting a Range of Software Vulnerabilities. Technical Report Technical Report SECLAB-05-05, Department of Computer Science, Stony Brook University, August 2005.
4. G. Edward Suh, Jae W. Lee, David Zhang, and Srinivas Devadas. Secure Program Execution via Dynamic Information Flow Tracking. In Proceedings of the 11th International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS-XI), pages 85-96, 2004.
5. Jedidiah R. Crandall and Frederic T. Chong. Minos: Control Data Attack Prevention Orthogonal to Memory Model. In Proceedings of the 37th International Symposium on Microarchitecture (MICRO), December 2004.
6. Shuo Chen, Jun Xu, Nithin Nakka, Abigniew Kalbarczyk, and Ravi Iyer. Defeating Memory Corruption Attacks via Pointer Taintedness Detection. In Proceedings of IEEE International Conference on Dependable Systems and Networks (DSN-2005), June 2005.
7. Dana Madsen. An Operating System Analog to the Perl Data Tainting Functionality. In Proceedings of the 23rd National Information Systems Security Conference, June 2000.
8. Randal L. Schwartz. Perl Advisor: Taint so Easy, Is It? Unix Review, August 2000.
9. David Thomas and Andrew Hung. Programming Ruby: The Pragmatic Programmer's Guide. Addison Wesley Longman, first edition, 2001.
10. David Flannagan. JavaScript: The Definitive Guide. O'Reilly, second edition, January 2001.
11. Ann Nguyen-Tuong, Salvatore Guarnieri, Doug Greene, Jeffrey Shirley, and David Evans. Automatically Hardening Web Applications Using Precise Tainting. In Proceedings of the 20th IFIP International Information Security Conference (SEC2005), May 2005.
12. Jim Chow, Ben Pfaff, Tal Garfinkel, Kevin Christopher, and Mendel Rosenblum. Understanding Data Lifetime via Whole System Simulation. In Proceedings of the 13th USENIX Security Symposium, pages 321-336, August 2004.
13. Michael Vrable, Justin Ma, Jay Chen, David Moore, Erik Vandekieft, Alex Snoeren, Geoff Voelker, and Stefan Savage. Scalability, Fidelity and Containment in the Potemkin Virtual Honey farm. In Proceedings of the 20th ACM Symposium on Operating Systems Principles, October 2005.
14. Manuel Costa, Jon Crowcroft, Miguel Castro, Antony Rowstron, Lidong Zhou, Lintao Zhang, and Paul Barham. Vigilante: End-to-End Containment of Internet Worms. In Proceedings of the 20th ACM Symposium on Operating Systems Principles, October 2005.
15. Georgios Portokalidis, Asia Slowinska, and Herbert Bos. Argos: an Emulator for Fingerprinting Zero-Day Attacks. In Proceedings of the first EuroSys Conference, April 2006.
16. Pax project, http://pax.pgsecurity.com/.
17. Edouard Bugnion, Scott Devine, Kinshuk Govil, and Mendel Rosenblum. Disco: Running Commodity Operating Systems on Scalable Multiprocessors. In Proceedings of the 16th ACM Symposium on Operating Systems Principles, pages 143-156, October 1997.
18. Dean M. Tullsen, Susan Eggers, and Henry M. Levy. Simultaneous Multithreading: Maximizing On-Chip Parallelism. In Proceedings of the 22th Annual International Symposium on Computer Architecture, 1995.
19. Emmett Witchel, Junghwan Rhee, and Krste Asanovic. Mondrix: Memory Isolation for Linux using Mondriaan Memory Protection. In Proceedings of the 20th ACM Symposium on Operating Systems Principles, October 2005.
20. Paul Starzetz. Quick Analysiss [sic] of the recent crc32 ssh(d) bug. Email to bugtraq@securityfocus.com, February 2001.
21. Paul Barham, Boris Dragovic, Keir Fraser, Steven Hand, Tim Harris, Alex Ho, Rolf Neugebauer, Ian Pratt, and Andrew Warfield. Xen and the Art of Virtualization. In Proceedings of the 19th ACM Symposium on Operating Systems Principles, pages 164-177, October 2003.
22. Fabrice Bellard. QEMU, a Fast and Portable Dynamic Translator. In Proceedings of the 2005 USENIX Annual Technical Conference, April 2005.
23. Carl A. Waldspurger. Memory Resource Management in VMware ESX Server. In OSDI2002: Proceedings of the Fifth Symposium on Operating Systems Design and Implementation, December 2002.
24. P. H. Gum. System/370 Extended Architecture: Facilities for Virtual Machines. IBM Journal of Research and Development, 27(6):530-544, November 1983.
25. Judith S. Hall and Paul T. Robinson. Virtualizing the VAX Architecture. In ISCA '91: Proceedings of the 18th Annual International Symposium on Computer Architecture, pages 380-389, New York, NY, 1991.
26. Christopher Clark, Keir Fraser, Steven Hand, Jacob Gorm Hansen, Eric Jul, Christian Limpach, Ian Pratt, and Andrew Warfield. Live Migration of Virtual Machines. In Proceedings of the 2nd Symposium on Networked Systems Design and Implementation, May 2005.
27. Andrew Warfield, Steven Hand, Keir Fraser, and Tim Deegan. Facilitating the Development of Soft Devices. In Proceedings of the 2005 USENIX Annual Technical Conference, April 2005.
28. George C. Necula, Scott McPeak, S.P. Rahul, and Westley Weimer. Cil: Intermediate Language and Tools for Analysis and Transformation of C Programs. In Proceedings of the 11th Annual Conference on Compiler Construction, April 2002.
29. Steven K. Reinhardt, Babak Falsafi, and David A. Wood. Kernel Support for the Wisconsin Wind Tunnel. In Proceedings of the 2nd USENIX Symposium on Microkernels and Other Kernel Architectures, September 1993.
30. Feng Qin, Shan Lu, and Yuanyuan Zhou. SafeMem: Exploiting ECC-Memory for Detecting Memory Leaks and Memory Corruption During Production Runs. In Proceedings of the 11th International Symposium on High-Performance Computer Architecture (HPCA-11), February 2005.