Payas Awadhutkar scite author profile

Algorithmic Complexity Vulnerabilities (ACV) are a class of vulnerabilities that enable Denial of Service Attacks. ACVs stem from asymmetric consumption of resources due to complex loop termination logic, recursion, and/or resource intensive library APIs. Completely automated detection of ACVs is intractable and it calls for tools that assist human analysts. We present DISCOVER, a suite of tools that facilitates human-onthe-loop detection of ACVs. DISCOVER's workflow can be broken into three phases-(1) Automated characterization of loops, (2) Selection of suspicious loops, and (3) Interactive audit of selected loops. We demonstrate DISCOVER using a case study using a DARPA challenge app. DISCOVER supports analysis of Java source code and Java bytecode. We demonstrate it for Java bytecode. Demo Video: https://youtu.be/LtaOYxo7AWI Tool:https://ensoftcorp.github.io/loop-comprehension-toolbox CCS CONCEPTS • Security and privacy → Software and application security.

show abstract

Modeling lessons from verifying large software systems for safety and security

Kothari¹,

Awadhutkar²,

Tamrawi³

et al. 2017

View full text Add to dashboard Cite

Insights for Practicing Engineers from a Formal Verification Study of the Linux Kernel

Kothari

Awadhutkar

Tamrawi

2016

View full text Add to dashboard Cite

Catastrophic Cyber-Physical Malware

Kothari

Santhanam

Awadhutkar

et al. 2018

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.