SegSlice: Towards a new class of secure programming primitives for trustworthy platforms

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 6101 LNCS, Issue , 2010, Pages 228-245

  Bratus, Sergey ^a   Locasto, Michael E ^b   Schulte, Brian ^b  

^a DARTMOUTH COLLEGE   (United States)

^b George Mason University   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

RUN-TIME MEASUREMENT; SECURE PROGRAMMING; STATIC PROGRAM;

COMPUTER SOFTWARE;

THERMOELECTRIC POWER;

EID: 77954692388     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-642-13869-0_15     Document Type: Conference Paper

References (34)

1. Bratus, S., D'Cunha, N., Sparks, E., Smith, S.: TOCTOU, Traps, and Trusted Computing. In: Proceedings of the TRUST 2008 Conference, Villach, Austria (March 2008)
2. Bratus, S., Locasto, M.E., Ramaswamy, A., Smith, S.W.: New Directions for Hardware-assisted Trusted Computing Policies (Position Paper). In: Gawrock, D., Reimer, H., Sadeghi, A.-R., Vishik, C. (eds.) Future of Trust in Computing, p. 30. Vieweg+Teubner Verlag, GWV Fachverlage GmbH, Wiesbaden (2009), ISBN 978-3-8348-0794-6
3. Bratus, S., Locasto, M.E., Ramaswamy, A., Smith, S.W.: Traps, events, emulation, and enforcement: managing the yin and yang of virtualization-based security. In: VMSec 2008: Proceedings of the 1st ACM workshop on Virtual machine security, pp. 49-58. ACM, New York (2008)
4. Levine, J.: Linkers & Loaders. Morgan Kaufmann/Academic (2000)
5. Last Stage of Delirium Research Group: Kernel Level Vulnerabilities: Behind the Scenes of the 5th Argus Hacking Challenge. Black Hat Briefings, Amsterdam (November 2001), http://www.blackhat.com/presentations/bh-europe-01/ LSD/bh-europe-01-lsd.ppt
6. Arce, I.: The kernel craze. IEEE Security and Privacy 2, 79-81 (2004)
7. Kauer, B.: Private Communication
8. Banerji, A., Tracey, J.M., Cohn, D.L.: Protected shared libraries: a new approach to modularity and sharing. In: ATEC 1997: Proceedings of the Annual Conference on USENIX Annual Technical Conference, Berkeley, CA, USA, p. 5. USENIX Association (1997)
9. Chiueh, T.C., Venkitachalam, G., Pradhan, P.: Integrating segmentation and paging protection for safe, efficient and transparent software extensions. SIGOPS Oper. Syst. Rev. 33(5), 140-153 (1999)
10. Ford, B., Cox, R.: Vx32: lightweight user-level sandboxing on the x86. In: ATC 2008: USENIX 2008 Annual Technical Conference on Annual Technical Conference, Berkeley, CA, USA, pp. 293-306. USENIX Association (2008)
11. Swift, M.M., Martin, S., Levy, H.M., Eggers, S.J.: Nooks: an architecture for reliable device drivers. In: EW10: Proceedings of the 10thWorkshop on ACM SIGOPS European Workshop, pp. 102-107. ACM, New York (2002)
12. Nethercote, N., Seward, J.: Valgrind: A Framework for Heavyweight Dynamic Binary Instrumentation. In: Proceedings of ACM SIGPLAN 2007 Conference on Programming Language Design and Implementation (PLDI 2007) (June 2007)
13. Luk, C.K., Cohn, R., Muth, R., Patil, H., Klauser, A., Lowney, G., Wallace, S., Reddi, V.J., Hazelwood., K.: Pin: Building Customized Program Analysis Tools with Dynamic Instrumentation. In: Proceedings of Programming Language Design and Implementation (PLDI) (June 2005)
14. Bruening, D., Garnett, T., Amarasinghe, S.: An infrastructure for adaptive dynamic optimization. In: Proceedings of the International Symposium on Code Generation and Optimization, pp. 265-275 (2003)
15. Buck, B., Hollingsworth, J.K.: An API for Runtime Code Patching. The International Journal of High Performance Computing Applications 14(4), 317-329 (Winter 2000)
16. Kiriansky, V., Bruening, D., Amarasinghe, S.: Secure Execution Via Program Shepherding. In: Proceedings of the 11th USENIX Security Symposium (August 2002)
17. Abadi, M., Budiu, M., Erlingsson, U., Ligatti, J.: Control-Flow Integrity: Principles, Implementations, and Applications. In: Proceedings of the ACM Conference on Computer and Communications Security, CCS (2005)
18. Roscoe, T., Elphinstone, K., Heiser, G.: Hype and Virtue. In: Proceedings of the 11th Workshop on Hot Topics in Operating Systems (HOTOS XI) (May 2007)
19. Karger, P.A., Safford, D.R.: Security and Performance Trade-Offs in I/O Operations for Virtual Machine Monitors. In: IBM Research Technical Report RC24500 (W0802-069) (February 2008)
20. Gosling, J., Joy, B., Steele Jr., G.L., Bracha, G.: The Java Language Specification, 3rd edn. Addison Wesley, Reading (2005)
21. Appel, A., Govindavajhala, S.: Using Memory Errors to Attack a Virtual Machine. In: IEEE Symposium on Security and Privacy (2003)
22. Chen, H., Wagner, D., Dean, D.: Setuid demystified. In: Proceedings of the 11th USENIX Security Symposium, Berkeley, CA, USA, pp. 171-190. USENIX Association (2002)
23. Tsafrir, D., Silva, D.D., Wagner, D.: The murky issue of changing process identity: revising "setuid demystified". In: USENIX; login: (June 2008)
24. Buchanan, E., Roemer, R., Shacham, H., Savage, S.: When good instructions go bad: Generalizing return-oriented programming to RISC. In: Syverson, P., Jha, S. (eds.) Proceedings of CCS 2008, October 2008, pp. 27-38. ACM Press, New York (2008)
25. Hund, R., Holz, T., Freiling, F.: Return-Oriented Rootkits: Bypassing Kernel Code Integrity Protection Mechanisms. In: Proceedings of the 18th USENIX Security Symposium (2009)
26. scut / team teso: Exploiting format string vulnerabilities, Version 1.0 (March 2001)
27. gera, riq: Exploiting Format String Vulnerabilities. Phrack 59(7) (July 2002)
28. anonymous author: Once upon a free. Phrack 57(9) (August 2001)
29. MaXX: Vudo malloc tricks. Phrack 57(8) (August 2001)
30. Durden, T.: Bypassing PaX ASLR protection. Phrack 59(5) (July 2002)
31. Designer, S.: Getting around non-executable stack (and fix). Bugtraq mailing list (August 1997)
32. Wojtczuk, R.: Defeating solar designer non-executable stack patch. Bugtraq mailing list (1998)
33. nergal: Advanced return-into-lib(c) exploits (PaX case study). Phrack 58(4) (December 2001)
34. Shacham, H.: The geometry of innocent flesh on the bone: Return-into-libc without function calls (on the x86). In: De Capitani di Vimercati, S., Syverson, P. (eds.) Proceedings of CCS 2007, October 2007, pp. 552-561. ACM Press, New York (2007)