Automatic patch generation for buffer overflow attacks

Proceedings - IAS 2007 3rd Internationl Symposium on Information Assurance and Security

Volumn , Issue , 2007, Pages 165-170

  Smirnov, Alexey ^a   Chiueh, Tzi Cker ^a  

^a Stony Brook University

Author keywords

[No Author keywords available]

Indexed keywords

ANALYSIS SYSTEM; APPLICATION PROGRAMS; ATTACK SIGNATURE; AUTOMATICALLY GENERATED; BUFFER OVERFLOW ATTACKS; EXECUTION TRACES; INFORMATION ASSURANCE AND SECURITY (IAS); INTRUSION PREVENTION SYSTEM (IPS); NETWORK SERVICES; NETWORK SERVICES (CO); PROGRAM TRANSFORMATIONS; RUN TIME; SOURCE CODING;

BUFFER STORAGE; COMPUTER SOFTWARE; CONTROL SYSTEM ANALYSIS; FILTRATION; MAINTENANCE; MILITARY DATA PROCESSING; REPAIR; SECURITY OF DATA; TECHNICAL PRESENTATIONS; TRACE ANALYSIS; WEIGHT CONTROL;

CONCURRENCY CONTROL;

EID: 46749088335     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/IAS.2007.87     Document Type: Conference Paper

References (21)

1. Beyond Security's SecuriTeam. http://www.securiteam.com.
2. D. Brumley, J. Newsome, D. Song, H. Wang, and S. Jha. Towards automatic generation of vulnerability-based signatures. In Proc. of IEEE Symposium on Security and Privacy, 2006.
3. Bugtraq. Blackmoon ftp server buffer overflow vulnerability, http://www.securityfocus.com/bid/3884/info.
4. Bugtraq. Bugtraq mailing list, http://www.securityfocus.com.
5. T-C. Chiueh and F-H. Hsu. RAD: A compile-time solution to buffer overflow attacks. In Proc. of 21st Intl. Conf. on Distributed Computing Systems, 2001.
6. M. Costa, J. Crowcroft, M. Castro, L. Zhou A. Rowstron, L. Zhang, and P. Barham. Vigilante: End-to-End Containment of Internet Worms. In Proceedings of ACM Symposium on Operating Systems Principles, 2005.
7. Determina. How the memory firewall works, http://www.determina.com/ whitepapers/index.html.
8. H.-A. Kim and B. Karp. Autograph: Toward automated, distributed worm signature detection. In Proceedings of USENIX Security Symposium, 2004.
9. C. Kreibich and J. Crowcroft. Honeycomb - creating intrusion detection signatures using honeypots. In Proc. of the Second Workshop on Hot Topics in Networks (Hotnets II), 2003.
10. L-C. Lam and T-C. Chiueh. Automatic extraction of accurate application-specific sandboxing policy. In Proc. of Seventh International Symposium on Recent Advances in Intrusion Detection, 2004.
11. L.-C. Lam and T.-C. Chiueh. Checking array bound violation using segmentation hardware. In Proc. of the International Conference on Dependable Systems and Networks, 2005.
12. M. Locasto, K. Wang an A. Keromytis, and S. Stolfo. FLIPS: Hybrid adaptive intrusion prevention. In Proc. of RAID 2005, 2005.
13. S. Nanda and T-C. Chiueh. Foreign code detection for Windows/X86 binaries. ECSL Technical report TR-190, Computer Science Department, Stony Brook University, 2005.
14. Susanta Nanda, Wei Li, Lap chung Lam, and Tzi cker Chiueh. Bird: Binary interpretation using runtime disassembly. In Proceedings of the 4th IEEE/ACM Conference on Code Generation and Optimization (CGO'06), March 2006.
15. J. Newsome, B. Karp, and D. Song. Polygraph: automatically generating signatures for polymorphic worms. In Proc. of the IEEE Symposium on Security and Privacy, 2005.
16. S. Sidiroglou and A. D. Keromytis. Countering network worms through automatic patch generation. IEEE Security and Privacy, 3(6), 2005.
17. S. Sidiroglou, M. E. Locasto, S. W. Boyd, and A. D. Keromytis. Building a reactive immune system for software services. In Proc. of 2005 USENIX Annual Technical Conference, 2005.
18. S. Singh, C. Estan, G. Varghese, and S. Savage. Automated worm fingerprinting. In Proc. of the 6th ACM/USENIX Symposium on Operating System Design and Implementation, 2004.
19. Symantec. Symantec internet security threat report. http://www. Symantec.com/, September 2005.
20. Y. Tang and S. Chen. Defending against internet worms: a signature-based approach. In Proc. of INFOCOM 2005, 2005.
21. V. Yegneswaran, J. Giffin, P. Barford, and S. Jha. An architecture for generating semantics-aware signatures. In Proc. of the USENIX Security Symposium, 2005.