Improving operation time bounded mission critical systems' attack-survivability through controlled source-code transformation

Authors:
Bogdan Korel;Shangpin Ren;Kevin Kwiat;Arnaud Auguste;Alban Vignaux
Affiliations:
Illinois Institute of Technology, Chicago, IL, USA;Illinois Institute of Technology, Chicago, IL, USA;Air Force Research Laboratory, Rome, NY, USA;Illinois Institute of Technology, Chicago, IL, USA;Illinois Institute of Technology, Chicago, IL, USA
Venue:
Proceedings of the 4th international conference on Security of information and networks
Year:
2011

Citing 17
Cited 0

The Consistent Comparison Problem in N-Version Software

IEEE Transactions on Software Engineering
Buffer overflow and format string overflow vulnerabilities

Software—Practice & Experience - Special issue: Security software
Specifying fault tolerance in mission critical systems

HASE '96 Proceedings of the 1996 High-Assurance Systems Engineering Workshop
Countering code-injection attacks with instruction-set randomization

Proceedings of the 10th ACM conference on Computer and communications security
On the effectiveness of address-space randomization

Proceedings of the 11th ACM conference on Computer and communications security
Using instruction block signatures to counter code injection attacks

ACM SIGARCH Computer Architecture News - Special issue: Workshop on architectural support for security and anti-virus (WASSA)
PointguardTM: protecting pointers from buffer overflow vulnerabilities

SSYM'03 Proceedings of the 12th conference on USENIX Security Symposium - Volume 12
Address obfuscation: an efficient approach to combat a board range of memory error exploits

SSYM'03 Proceedings of the 12th conference on USENIX Security Symposium - Volume 12
Efficient techniques for comprehensive protection from memory error exploits

SSYM'05 Proceedings of the 14th conference on USENIX Security Symposium - Volume 14
StackGuard: automatic adaptive detection and prevention of buffer-overflow attacks

SSYM'98 Proceedings of the 7th conference on USENIX Security Symposium - Volume 7
The N-Version Approach to Fault-Tolerant Software

IEEE Transactions on Software Engineering
The Monoculture Risk Put into Context

IEEE Security and Privacy
Security through Diversity: Leveraging Virtual Machine Technology

IEEE Security and Privacy
Keynote Paper: Search Based Software Testing for Software Security: Breaking Code to Make it Safer

ICSTW '09 Proceedings of the IEEE International Conference on Software Testing, Verification, and Validation Workshops
Defeating memory error exploits using automated software diversity

Defeating memory error exploits using automated software diversity
Fast and practical instruction-set randomization for commodity systems

Proceedings of the 26th Annual Computer Security Applications Conference
Integrating fault-tolerant techniques into the design of critical systems

ISARCS'10 Proceedings of the First international conference on Architecting Critical Systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

Mission critical systems often operate for limit time durations. For these systems, we subscribe to the notion that provisioning of security can be based on the expected duration of a system's mission. In this paper, we present a simple and safe K-variant approach to improve time-based mission critical systems' attack-survivability and provide formal analysis about K-variant system's attack survivability under M memory-based attack attempts. Our theoretical analysis supported by extensive simulations and a case study provide good evidences that the proposed approach may be in improving system's attack-survivability.