Building a reactive immune system for software services

USENIX 2005 Annual Technical Conference

Volumn , Issue , 2005, Pages 149-161

  Sidiroglou, Stelios ^a   Locasto, Michael E ^a   Boyd, Stephen W ^a   Keromytis, Angelos D ^a  

^a Columbia University ^*  (United States)

Author keywords

[No Author keywords available]

Indexed keywords

APPLICATION PROGRAMS; SELF-HEALING MATERIALS;

DENIAL OF SERVICE; INSTRUCTION-LEVEL; PERFORMANCE IMPACT; PROGRAM EXECUTION; PROGRAM TERMINATION; PROTOTYPE IMPLEMENTATIONS; REAL APPLICATIONS; SYSTEM ARCHITECTURES;

PROGRAM DEBUGGING;

EID: 84906497159     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (34)

1. CERT Advisory CA-2003-21: W32/Blaster Worm. http://www.cert.org/advisories/CA-2003-20.html, August 2003.
2. The Spread of the Sapphire/Slammer Worm. http://www.silicondefense.com/research/worms/slammer.php, February 2003.
3. A. Baratloo, N. Singh, and T. Tsai. Transparent Run-Time Defense Against Stack Smashing Attacks. In Proceedings of the USENIX Annual Technical Conference, June 2000.
4. A. Baratloo, N. Singh, and T. Tsai. Transparent Run-Time Defense Against Stack Smashing Attacks. In Proceedings of the USENIX Annual Technical Conference, June 2000.
5. th ACM Conference on Computer and Communications Security (CCS), October 2003.
6. D. Bruening, T. Garnett, and S. Amarasinghe. An Infrastructure for Adaptive Dynamic Optimization. In Proceedings of the International Symposium on Code Generation and Optimization, pages 265-275, 2003.
7. th Workshop on Hot Topics in Operating Systems, May 2003.
8. H. Chen and D. Wagner. MOPS: an Infrastructure for Examining Security Properties of Software. In Proceedings of the ACM Computer and Communications Security (CCS) Conference, pages 235-244, November 2002.
9. S. A. Crosby and D. S. Wallach. Denial of Service via Algorithmic Complexity Attacks. In Proceedings of the 12th USENIX Security Symposium, pages 29-44, August 2003.
10. th Annual ACM SIGPLAN Conference on Object Oriented Programming, Systems, Languages, and Applications,October 2003.
11. E. Duesterwald and S. P. Amarsinghe. On the Run - Building Dynamic Program Modifiers for Optimization, Introspection, and Security. In Conference on Programming Language Design and Implementation (PLD1), 2002.
12. G. W. Dunlap, S. King, S. Cinar, M. A. Basrai, and P. M. Chen. ReVirt: Enabling Intrusion Analysis Through Virtual-Machine Logging and Replay. In Proceedings of the Symposium on Operating Systems Design and Implementation (OSDI), February 2002.
13. th USENIX Security Symposium, January 1998.
14. th ISOC Symposium on Network and Distributed Systems Security (SNDSS), February 2003.
15. T. Jim, G. Morrisett, D. Grossman, M. Hicks, J. Cheney, and Y. Wang. Cyclone: A safe dialect of C. In Proceedings of the USENIX Annual Technical Conference, pages 275-288, June 2002.
16. th ACM Conference on Computer and Communications Security (CCS), October 2003.
17. th ACM Symposium on Operating Systems Principles (SOSP), October 2003.
18. S. T. King, G. Dunlap, and P. Chen. Operating System Support for Virtual Machines. In Proceedings of the USENIX Annual Technical Conference, June 2003.
19. th USENIX Security Symposium, August 2002.
20. D. Mosberger and T. Jin. httperf: A tool for measuring web server performance. In First Workshop on Internet Server Performance, pages 59— 67. ACM, June 1998.
21. N. Nethercote and J. Seward. Valgrind: A Program Supervision Framework. In Electronic Notes in Theoretical Computer Science, volume 89, 2003.
22. J. Newsome and D. Dong. Dynamic Taint Analysis for Automatic Detection, Analysis, and Signature Generation of Exploits on Commodity Software. In The 12th Annual Network and Distributed System Security Symposium, February 2005.
23. th International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOSX), October 2002.
24. N. Provos. Improving Host Security with System Call Policies. In Proceedings of the 12th USENIX Security Symposium, pages 257-272, August 2003.
25. th Annual Computer Security Applications Conference (ACSAC), December 2004.
26. th Symposium on Operating Systems Design and Implementation (OSDI), December 2004.
27. A. Rudys and D. S. Wallach. Transactional Rollback for Language-Based Systems. In ISOC Symposium on Network and Distributed Systems Security (SNDSS), February 2001.
28. A. Rudys and D. S. Wallach. Termination in Language-based Systems. ACM Transactions on Information and System Security, 5(2), May 2002.
29. S. Sidiroglou and A. D. Keromytis. A Network Worm Vaccine Architecture. In Proceedings of the IEEE Workshop on Enterprise Technologies: Infrastructure for Collaborative Enterprises (WET-ICE), Workshop on Enterprise Security, pages 220225, June 2003.
30. A. Smirnov and T. .Chiueh. DIRA: Automatic Detection, Identification, and Repair of Control-Hijacking Attacks. In The 12th Annual Network and Distributed System Security Symposium, February 2005.
31. G. E. Suh, J. W. Lee, D. Zhang, and S. Devadas. Secure program execution via dynamic information flow tracking. SIGOPS Oper. Syst. Rev.,38(5):85-96, 2004.
32. T. Toth and C. Kruegel. Accurate Buffer Overflow Detection via Abstract Payload Execution. In Proceedings of the 5th Symposium on Recent Advances in Intrusion Detection (RAID), October 2002.
33. th International Conference on Parallel Architectures and Compilation Techniques, September 2003.
34. J. Yin, J.-P. Martin, A. Venkataramani, L. Alvisi, and M. Dahlin. Separating Agreement from Execution for Byzantine Fault Tolerant Services. In Proceedings of ACM SOSP, October 2003.