ARCHERR: Runtime Environment Driven Program Safety

机译：ARCHER：运行时环境驱动程序安全

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Parameters of a program's runtime environment such as the machine architecture and operating system largely determine whether a vulnerability can be exploited. For example, the machine word size is an important factor in an integer overflow attack and likewise the memory layout of a process in a buffer or heap overflow attack. In this paper, we present an analysis of the effects of a runtime environment on a language's data types. Based on this analysis, we have developed Archerr, an automated one-pass source-to-source transformer that derives appropriate architecture dependent runtime safety error checks and inserts them in C source programs. Our approach achieves comprehensive vulnerability coverage against a wide array of program-level exploits including integer overflows/underflows. We demonstrate the efficacy of our technique on versions of C programs with known vulnerabilities such as Sendmail. We have benchmarked our technique and the results show that it is in general less expensive than other well-known runtime techniques, and at the same time requires no extensions to the C programming language. Additional benefits include the ability to gracefully handle arbi-trary pointer usage, aliasing, and typecasting.

机译：程序运行时环境的参数（例如计算机体系结构和操作系统）在很大程度上决定是否可以利用漏洞。例如，机器字大小是整数溢出攻击中的重要因素，同样是缓冲区或堆溢出攻击中进程的内存布局。在本文中，我们对运行时环境对语言数据类型的影响进行了分析。基于此分析，我们开发了Archerr，这是一种自动的单程源到源转换器，可导出依赖于体系结构的适当运行时安全错误检查并将其插入C源程序中。我们的方法针对各种程序级别的漏洞（包括整数上溢/下溢）实现了全面的漏洞覆盖。我们在具有已知漏洞（例如Sendmail）的C程序版本上证明了我们的技术的有效性。我们已经对我们的技术进行了基准测试，结果表明，它通常比其他众所周知的运行时技术便宜，并且同时不需要扩展C编程语言。其他好处包括能够优雅地处理arbi-trary指针的用法，别名和类型转换的功能。

著录项

来源
《European Symposium on Research in Computer Security(ESORICS 2004); 20040913-15; Sophia Antipolis(FR)》|2004年|P.385-406|共22页
会议地点 Sophia Antipolis(FR)
作者
Ramkumar Chinchani; Anusha Iyer; Bharat Jayaraman; Shambhu Upadhyaya;
展开▼
作者单位

University at Buffalo (SUNY), Buffalo, NY 14260;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类安全保密;
关键词

相似文献

外文文献
中文文献
专利

1. On Generating Realtime Programs with Runtime Checking From Timed Automata to Realtime Programs on Non-Realtime Environments [J] . Ilankaikone SENTHOORAN, Julian PROKAY, Takuo WATANABE 電子情報通信学会技術研究報告. 知能ソフトウェア工学. Knowledge-Based Software Engineering . 2011,第169期

机译：关于在非实时环境中从定时自动机到实时程序运行时检查生成实时程序
2. On Generating Realtime Programs with Runtime Checking From Timed Automata to Realtime Programs on Non-Realtime Environments [J] . Ilankaikone SENTHOORAN, Julian PROKAY, Takuo WATANABE 電子情報通信学会技術研究報告. ソフトウェアサイエンス. Software Science . 2011,第168期

机译：关于在非实时环境中从定时自动机到实时程序运行时检查生成实时程序
3. On Generating Realtime Programs with Runtime Checking From Timed Automata to Realtime Programs on Non-Realtime Environments [J] . Ilankaikone SENTHOORAN, Julian PROKAY, Takuo WATANABE 電子情報通信学会技術研究報告 . 2011,第169期

机译：关于在非实时环境中从定时自动机到实时程序的运行时检查生成实时程序
4. ARCHERR: Runtime Environment Driven Program Safety [C] . Ramkumar Chinchani, Anusha Iyer, Bharat Jayaraman, European Symposium on Research in Computer Security . 2004

机译：Archer：运行时环境驱动程序安全
5. Runtime Enforcement of Memory Safety for the C Programming Language [D] . Simpson, Matthew Stephen 2011

机译：C编程语言的内存安全性的运行时增强
6. Type 2 diabetes mellitus development programs in the new regulatory environment with cardiovascular safety requirements [O] . Fred Yang, Murray Stewart, June Ye, 2015

机译：在具有心血管安全要求的新监管环境中的2型糖尿病开发计划
7. Runtime-driven shared last-level cache management for task-parallel programs [O] . Abhisek Pan, Vijay S. Pai 2015

机译：运行时间驱动的任务并行程序的共享最后一级缓存管理

ARCHERR: Runtime Environment Driven Program Safety

摘要

著录项

相似文献

相关主题

期刊订阅