Pre-patched software

Authors:
Jianing Guo;Jun Yuan;Rob Johnson
Affiliations:
Stony Brook University;Stony Brook University;Stony Brook University
Venue:
HotSec'09 Proceedings of the 4th USENIX conference on Hot topics in security
Year:
2009

Citing 6
Cited 1

CCured in the real world

PLDI '03 Proceedings of the ACM SIGPLAN 2003 conference on Programming language design and implementation
Shield: vulnerability-driven network filters for preventing known vulnerability exploits

Proceedings of the 2004 conference on Applications, technologies, architectures, and protocols for computer communications
An efficient and backwards-compatible transformation to ensure memory safety of C programs

Proceedings of the 12th ACM SIGSOFT twelfth international symposium on Foundations of software engineering
Towards Automatic Generation of Vulnerability-Based Signatures

SP '06 Proceedings of the 2006 IEEE Symposium on Security and Privacy
Automatic synthesis of filters to discard buffer overflow attacks: a step towards realizing self-healing systems

ATEC '05 Proceedings of the annual conference on USENIX Annual Technical Conference
Taint-enhanced policy enforcement: a practical approach to defeat a wide range of attacks

USENIX-SS'06 Proceedings of the 15th conference on USENIX Security Symposium - Volume 15

MDSE@R: model-driven security engineering at runtime

CSS'12 Proceedings of the 4th international conference on Cyberspace Safety and Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Developing and deploying software patches is currently slow and labor-intensive. After software vendors discover a security bug in their product, they must write a patch, test it thoroughly, and distribute it to users, who may peform further testing before installing the patch. These manual steps take time, leaving users vulnerable for days or even weeks after a bug is discovered. Pre-patched software removes these time-consuming steps from the vulnerability-response critical path, reducing the window of vulnerability to hours or even minutes. Pre-patched applications ship with latent run-time checks that are automatically inserted during the compilation process. The compiler emits checks to cover any potentially-unsafe operation in the code. When the software vendor discovers a new vulnerability in its product, it can issue an alert informing its customers that they should activate one or more of the checks. Generating the run-time checks in advance removes the manual patchd-evelopment and testing processes from the vulnerability response critical path. Thus, when the vendor discovers a new vulnerability, it can immediately issue an alert and users can act on that alert without hesitation. By default, the run-time checks are disabled and hence incur little or no overhead. We have developed a CIL-based programtransformation that pre-patches C programs for memory-safety bugs. Early experiments suggest that pre-patched software may incur little measurable run-time overhead.