Self-healing: Science, engineering, and fiction [position paper]

Proceedings New Security Paradigms Workshop

Volumn , Issue , 2007, Pages 43-48

  Locasto, Michael E ^a  

^a Department of Earth and Environmental Sciences   (United States)

Author keywords

Autonomic computing; Self * systems; Self healing

Indexed keywords

AUTONOMIC COMPUTING; COMPUTING SYSTEM; DEFENSE SYSTEM; DEGREE OF AUTONOMY; GENERAL PURPOSE; HARD PROBLEMS; POSITION PAPERS; RESEARCH PROBLEMS; RUNTIMES; SELF-HEALING; STATE OF THE ART;

ARTS COMPUTING; COMPUTER SCIENCE; LARGE SCALE SYSTEMS; NETWORK SECURITY;

REPAIR;

EID: 70450252018     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1600176.1600183     Document Type: Conference Paper

References (34)

1. ABADI, M., BUDIU, M., ERLINGSSON, U., AND LIGATTI, J. Control-Flow Integrity: Principles, Implementations, and Applications. In Proceedings of the ACM Conference on Computer and Communications Security (CCS) (2005).
2. BHATKAR, S., CHATURVEDI, A., AND SEKAR., R. Improving Attack Detection in Host-Based IDS by Learning Properties of System Call Arguments. In Proceedings of the IEEE Symposium on Security and Privacy (2006).
3. th Symposium on Network & Distributed System Security (NDSS) (Feb 2007).
4. BRUMLEY, D., NEWSOME, J., SONG, D., WANG, H., AND JHA, S. Towards Automatic Generation of Vulnerability-Based Signatures. In Proceedings of the IEEE Symposium on Security and Privacy (2006).
5. th ACM Conference on Computer and Communications Security (CCS) (2006).
6. th Workshop on Hot Topics in Operating Systems (HOTOS-IX) (May 2003).
7. th International Symposium on Recent Advances in Intrusion Detection (RAID) (2006).
8. COSTA, M., CASTRO, M., ZHOU, L., ZHANG, L., AND PEINADO, M. Bouncer: Securing Software By Blocking Bad Input. In Proceedings of the ACM Symposium on Systems and Operating Systems Principles (SOSP) (2007).
9. COSTA, M., CROWCROFT, J., CASTRO, M., AND ROWSTRON, A. Vigilante: End-to-End Containment of Internet Worms. In Proceedings of the Symposium on Systems and Operating Systems Principles (SOSP) (2005).
10. COWAN, C., PU, C., MAIER, D., HINTON, H., WALPOLE, J., BAKKE, P., BEATTIE, S., GRIER, A., WAGLE, P., AND ZHANG, Q. Stackguard: Automatic Adaptive Detection and Prevention of Buffer-Overflow Attacks. In Proceedings of the USENIX Security Symposium (1998).
11. th ACM Conference on Computer and Communications Security (CCS) (November 2005).
12. CUI, W., PEINADO, M., WANG, H. J., AND LOCASTO, M. E. ShieldGen: Automated Data Patch Generation for Unknown Vulnerabilities with Informed Probing. In Proceedings of the IEEE Symposium on Security and Privacy (May 2007).
13. th Annual ACM SIGPLAN Conference on Object Oriented Programming, Systems, Languages, and Applications (October 2003).
14. FENG, H. H., KOLESNIKOV, O., FOGLA, P., LEE, W., AND GONG, W. Anomaly Detection Using Call Stack Information. In Proceedings of the 2003 IEEE Symposium on Security and Privacy (May 2003).
15. GANAPATHY, V., JAEGER, T., AND JHA, S. Retrofitting Legacy Code for Authorization Policy Enforcement. In Proceedings of the IEEE Symposium on Security and Privacy (May 2006).
16. GAO, D., REITER, M. K., AND SONG, D. Gray-Box Extraction of Execution Graphs for Anomaly Detection. In Proceedings of the ACM Conference on Computer and Communications Security (CCS) (2004).
17. th International Symposium on Recent Advances in Intrusion Detection (RAID) (September 2005).
18. HOFMEYR, S. A., SOMAYAJI, A., AND FORREST, S. Intrusion Detection System Using Sequences of System Calls. Journal of Computer Security 6, 3 (1998), 151-180.
19. th USENIX Security Symposium (August 2002).
20. th ACM Conference on Computer and Communications Security (CCS) (November 2005).
21. LOCASTO, M. E., CRETU, G. F., STAVROU, A., AND KEROMYTIS, A. D. A Model for Automatically Repairing Execution Integrity. Tech. Rep. CUCS-005-07, Columbia University, January 2007.
22. LOCASTO, M. E., STAVROU, A., CRETU, G. F., AND KEROMYTIS, A. D. From STEM to SEAD: Speculative Execution for Automatic Defense. In Proceedings of the USENIX Annual Technical Conference (June 2007), pp. 219-232.
23. MUTZ, D., VALEUR, F., VIGNA, G., AND KRUEGEL, C. Anomalous System Call Detection. ACM Transactions on Information and System Security 9, 1 (February 2006), 61-93.
24. th Symposium on Network and Distributed System Security (NDSS 2006) (February 2006).
25. th Symposium on Network and Distributed System Security (NDSS) (February 2005).
26. QIN, F., TUCEK, J., SUNDARESAN, J., AND ZHOU, Y. Rx: Treating Bugs as Allergies - A Safe Method to Survive Software Failures. In Proceedings of the Symposium on Systems and Operating Systems Principles (SOSP) (2005).
27. th Symposium on Operating Systems Design and Implementation (OSDI) (December 2004).
28. SIDIROGLOU, S., LOCASTO, M. E., BOYD, S. W., AND KEROMYTIS, A. D. Building a Reactive Immune System for Software Services. In Proceedings of the USENIX Annual Technical Conference (April 2005), pp. 149-161.
29. th USENIX Security Symposium (August 2000).
30. SONG, Y., LOCASTO, M. E., STAVROU, A., KEROMYTIS, A. D., AND STOLFO, S. J. On the Infeasibility of Modeling Polymorphic Shellcode. In Proceedings of the ACM Conference on Computer and Communications Security (CCS) (2007).
31. th International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS-XI) (October 2004).
32. th New Security Paradigms Workshop (NSPW) (September 2006), pp. 21-29.
33. WANG, H. J., GUO, C., SIMON, D. R., AND ZUGENMAIER, A. Shield: Vulnerability-Driven Network Filters for Preventing Known Vulnerability Exploits. In Proceedings of the ACM SIGCOMM (August 2004).
34. th ACM Conference on Computer and Communications Security (CCS) (November 2005).