The MINESTRONE architecture combining static and dynamic analysis techniques for software security

Proceedings - 1st SysSec Workshop, SysSec 2011

Volumn , Issue , 2011, Pages 53-56

  Keromytis, Angelos D ^a   Stolfo, Salvatore J ^a   Yang, Junfeng ^a   Stavrou, Angelos ^b   Ghosh, Anup ^b   Engler, Dawson ^c   Dacier, Marc ^d   Elder, Matthew ^d   Kienzle, Darrell ^d  

^a Och Spine at New York Presbyterian Hospitals   (United States)

^b GEORGE MASON UNIVERSITY   (United States)

^c STANFORD UNIVERSITY   (United States)

^d SYMANTEC RESEARCH LABS   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

CONCURRENT PROGRAM; LARGE CLASS; MULTI CORE; NOVEL ARCHITECTURE; OPEN SOURCE PROJECTS; PERFORMANCE COSTS; PERFORMANCE IMPACT; REMOTE SERVERS; RUN-TIME DATA; RUNTIME PERFORMANCE; SELECTIVE REMOVAL; SOFTWARE SECURITY; SOFTWARE VULNERABILITIES; SPECIFIC HARDWARE; STATIC AND DYNAMIC ANALYSIS;

COMPUTER HARDWARE; COMPUTER SOFTWARE; DYNAMIC ANALYSIS; FAULT TOLERANCE; STATIC ANALYSIS;

SECURITY OF DATA;

EID: 83755183629     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SysSec.2011.33     Document Type: Conference Paper

References (28)

1. Wahbe, R., Lucco, S., Anderson, T.E., Graham, S.L.: Efficient softwarebased fault isolation. In: In Proceedings of the 14th ACM Symposium on Operating Systems Principles. (1993) 203-216
2. Seward, J., Nethercote, N.: Valgrind, an open-source memory debugger for x86-linux. (http://developer.kde.org/-sewardj/)
3. Rinard, M.C., Cadar, C., Dumitran, D., Roy, D.M., Leu, T., Beebee, W.S.: Enhancing server availability and security through failureoblivious computing. In: OSDI. (2004) 303-316
4. Sidiroglou, S., Laadan, O., Viennot, N., Perez, C.R., Keromytis, A.D., Nieh, J.: ASSURE: Automatic Software Self-healing Using Rescue points. In: Proceedings of the 14th International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS). (2009) 37-48
5. Cadar, C., Dunbar, D., Engler, D.: KLEE: Unassisted and cutomatic generation of high-coverage tests for complex systems programs. In: Proceedings of the 8th Symposium on Operating Systems Design and Implementation (OSDI). (2008) 209-224
6. Yang, J., Sar, C., Twohey, P., Cadar, C., Engler, D.: Automatically generating malicious disks using symbolic execution. In: Proceedings of the 2006 IEEE Symposium on Security and Privacy (SP '06). (2006) 243-257
7. Cadar, C., Ganesh, V., Pawlowski, P.M., Dill, D.L., Engler, D.R.: EXE: automatically generating inputs of death. In: Proceedings of the 13th ACM Conference on Computer and Communications Security (CCS '06). (2006) 322-335
8. Engler, D., Chelf, B., Chou, A., Hallem, S.: Checking system rules using system-specific, programmer-written compiler extensions. In: Proceedings of Operating Systems Design and Implementation OSDI). (2000)
9. Engler, D., Yu Chen, D., Hallem, S., Chou, A., Chelf, B.: Bugs as deviant behavior: A general approach to inferring errors in systems code. In: Proceedings of the 18th ACM Symposium on Operating Systems Principles (SOSP '01). (2001)
10. Engler, D., Ashcraft, K.: RacerX: Effective, Static Detection of Race Conditions and Deadlocks. In: Proceedings of ACM SOSP. 2003)
11. Yang, J., Kremenek, T., Xie, Y., Engler, D.: MECA: an extensible, expressive system and language for statically checking security properties. In: Proceedings of the 10th ACM Conference on Computer and Communications Security (CCS). (2003)
12. Ashcraft, K., Engler, D.: Using programmer-written compiler extensions to catch security holes. In: Proceedings of the 2002 IEEE Symposium on Security and Privacy (SP '02), Oakland, California (2002)
13. Yang, J., Chen, T., Wu, M., Xu, Z., Liu, X., Lin, H., Yang, M., Long, F., Zhang, L., Zhou, L.: MODIST: Transparent model checking of unmodified distributed systems. In: Proceedings of the 6th Symposium on Networked Systems Design and Implementation (NSDI). (2009)
14. Yang, J., Sar, C., Engler, D.: Explode: a lightweight, general system for finding serious storage system errors. In: Proceedings of the Seventh Symposium on Operating Systems Design and Implementation (OSDI '06). (2006) 131-146
15. Yang, J., Twohey, P., Engler, D., Musuvathi, M.: Using model checking to find serious file system errors. In: Proceedings of the 6th Symposium on Operating Systems Design and Implementation (OSDI '04). (2004) 273-288
16. Sidiroglou, S., Keromytis, A.D.: Execution Transactions for Defending Against Software Failures. International Journal of Information Security (IJIS) 5 (2006) 77-91
17. Sidiroglou, S., Locasto, M.E., Boyd, S.W., Keromytis, A.D.: Building A Reactive Immune System for Software Services. In: Proceedings of the 11th USENIX Annual Technical Conference. (2005) 149-161
18. Kim, H.C., Keromytis, A.D.: On the Deployment of Dynamic Taint Analysis for Application Communities. IEICE Transactions E92-D (2009) 548-551
19. Lu, S., Park, S., Seo, E., Zhou, Y.: Learning from mistakes: a comprehensive study on real world concurrency bug characteristics. In: ASPLOS XIII: Proceedings of the 13th international conference on Architectural support for programming languages and operating xystems, New York, NY, USA, ACM (2008) 329-339
20. Kc, G.S., Keromytis, A.D., Prevelakis, V.: Countering Code-Injection Attacks With Instruction-Set Randomization. In: Proceedings of the 10th ACM Conference on Computer and Communications Security (CCS). (2003) 272-280
21. Boyd, S.W., Keromytis, A.D.: SQLrand: Preventing SQL Injection Attacks. In: Proceedings of the 2nd Applied Cryptography and Network Security Conference (ACNS). (2004) 292-302
22. Locasto, M., Wang, K., Keromytis, A., Stolfo, S.: FLIPS: Hybrid Adaptive Intrusion Prevention. In: Proceedings of the 8th Symposium on Recent Advances in Intrusion Detection (RAID). (2005) 82-101
23. Landi, W., Ryder, B.G., Zhang, S.: Interprocedural side effect analysis with pointer aliasing. In: PLDI '93: Proceedings of the 1993 ACM SIGPLAN conference on Programming language design and implementation. (1993)
24. Xu, H., Pickett, C.J.F., Verbrugge, C.: Dynamic purity analysis for java programs. In: PASTE '07: Proceedings of the 7th ACM SIGPLANSIGSOFT workshop on Program analysis for software tools and engineering. (2007)
25. Portokalidis, G., Keromytis, A.D.: Fast and Practical Instruction-Set Randomization for Commodity Systems. In: Proceedings of ACSAC. (2010)
26. O'Sullivan, P., Anand, K., Kothan, A., Smithon, M., Barua, R., Keromytis, A.D.: Retrofitting Security in COTS Software with Binary Rewriting. In: Proceedings of the 26th IFIP International Information Security Conference (SEC). (2011)
27. Cui, H., Wu, J., che Tsai, C., Yang, J.: Stable Deterministic Multithreading through Schedule Memoization. In: Proceedings of the 9th Symposium on Operating Systems Design and Implementation (OSDI). (2010)
28. Wu, J., Cui, H., Yang, J.: Bypassing Races in Live Applications with Execution Filters. In: Proceedings of the 9th Symposium on OperatingSystems Design and Implementation (OSDI). (2010)