Buffer overflows: attacks and defenses for the vulnerability of the decade

Cowan, Crispin; Wagle, F.; Pu, Calton; Beattie, Steve; Walpole, Jonathan

doi:10.1109/discex.2000.821514

Cited by 186 publications

(93 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The body of work in communication security [18], host based security [19], and software security [20] can often be directly applied to UAVs. However, UAVs pose specific problems that cannot be addressed by simply applying known solutions [6,11,14].…”

Section: Related Workmentioning

confidence: 99%

Unmanned Aerial Vehicle security using Recursive parameter estimation

Birnbaum

Dolgikh

Skormin

et al. 2014

2014 International Conference on Unmanned Aircraft Systems (ICUAS)

View full text Add to dashboard Cite

The proliferation of Unmanned Aerial Vehicles (UAVs) raises a host of new security concerns. Our research resulted in a prototype UAV monitoring system, which captures flight data and performs real-time estimation/tracking of airframe and controller parameters utilizing the Recursive Least Squares Method. Subjected to statistical validation and trend analysis, parameter estimates are instrumental for the detection of some classes of cyber attacks and incipient hardware failures that can invariably jeopardize mission success. Our results demonstrate that achieving efficient anomaly detection during flight is possible through the intelligent application of statistical methods to system behavioral profiling.

show abstract

Section: Related Workmentioning

confidence: 99%

Unmanned Aerial Vehicle security using Recursive parameter estimation

Birnbaum

Dolgikh

Skormin

et al. 2014

2014 International Conference on Unmanned Aircraft Systems (ICUAS)

View full text Add to dashboard Cite

show abstract

“…Without knowing the encryption key, an attacker cannot obtain control of a victim system even if the attacker can overwrite contents of the activation record. StackGuard is a dynamic buffer overflow attack detection mechanism [6,7]. StackGuard implements a canary word as a detection sensor on top of the return address in the activation record.…”

Section: Related Workmentioning

confidence: 99%

Repairing return address stack for buffer overflow protection

Park

Lee

2004

Proceedings of the 1st Conference on Computing Frontiers

View full text Add to dashboard Cite

Although many defense mechanisms against buffer overflow attacks have been proposed, buffer overflow vulnerability in software is still one of the most prevalent vulnerabilities exploited. This paper proposes a micro-architecture based defense mechanism against buffer overflow attacks. As buffer overflow attack leads to a compromised return address, our approach is to provide a software transparent micro-architectural support for return address integrity checking. By keeping an uncompromised copy of the return address separate from the activation record in run-time stack, the return address compromised by a buffer overflow attack can be detected at run time.

show abstract

“…The enhanced function tear down code first checks to see that the canary word is intact before jumping to the address pointed to by the return address word. Critical to the StackGuard "canary" approach is that the attacker is prevented from forging a canary by embedding the canary word in the overflow string [5].…”

Section: Blast: Blast (Berkeley Lazy Abstractionmentioning

confidence: 99%

A Rule-based Security Auditing Tool for Software Vulnerability Detection

Lee¹,

Cho²,

Jang³

et al. 2006

2006 International Conference on Hybrid Information Technology

View full text Add to dashboard Cite

We can use information and software of various forms without being restricted for place and time if ubiquitous computing age comes. However, its reverse function is causing security problems such as outflow of personal information, hacking, diffusion of virus. Specially, dissemination of software that has malicious purpose in ubiquitous computing environment causes serious damage. We have studied about malicious code detection and software vulnerability detection tool to prevent this. But, existent detection tools are not suited to general software, because they are limitative in specification area. In addition, they can not detect a newly appeared malicious code. We must update pattern of new malicious code, because they use a simple pattern matching technique. In this paper, we propose rule-based security auditing tool that analyzes structure of target code to solve these problems, define this as rule, and detect malicious codes and software vulnerabilities. Proposed auditing tool can construct secure ubiquitous computing environment, because it will be used by a common software audit tool that detects malicious codes and software vulnerabilities at the same time.

show abstract

Buffer overflows: attacks and defenses for the vulnerability of the decade

Cited by 186 publications

References 5 publications

Unmanned Aerial Vehicle security using Recursive parameter estimation

Unmanned Aerial Vehicle security using Recursive parameter estimation

Repairing return address stack for buffer overflow protection

A Rule-based Security Auditing Tool for Software Vulnerability Detection

Contact Info

Product

Resources

About