The exception handling effectiveness of POSIX operating systems

Koopman, Philip; DeVale, J.

doi:10.1109/32.877845

Cited by 89 publications

(64 citation statements)

References 24 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Robustness testing and fuzzers are some approaches that study the system's ability in handling with erroneous input conditions at their interface [2,18,22]. Throughout the years, these approaches have evolved into more intelligent, and less random, vulnerability detectors [6,31,36].…”

Section: Related Workmentioning

confidence: 99%

Using Behavioral Profiles to Detect Software Flaws in Network Servers

Antunes

Neves

2011

2011 IEEE 22nd International Symposium on Software Reliability Engineering

View full text Add to dashboard Cite

Some software faults, namely security vulnerabilities, tend to elude conventional testing methods. Since the effects of these faults may not be immediately perceived nor have a direct impact on the server's execution (e.g., a crash), they can remain hidden even if exercised by the test cases.Our detection approach consists in inferring a behavioral profile of a network server that models its correct execution by combining information about the implemented state machine protocol and the server's internal execution. Flaws are automatically detected if the server's behavior deviates from the profile while processing the test cases. This approach was implemented in a tool, which was used to analyze several FTP vulnerabilities, showing that it can effectively find various kinds of flaws.

show abstract

Section: Related Workmentioning

confidence: 99%

Using Behavioral Profiles to Detect Software Flaws in Network Servers

Antunes

Neves

2011

2011 IEEE 22nd International Symposium on Software Reliability Engineering

View full text Add to dashboard Cite

show abstract

“…The paper uses robustness testing to measure how well these OS handle the inputs from a DD [1,5,12]. A group of functions from the Windows interface (for kernel-mode DD, these functions are defined in the Device Driver Toolkit (DDK)) was selected and experimentally evaluated.…”

Section: Introductionmentioning

confidence: 99%

Robustness Testing of the Windows DDK

Mendonça¹,

Neves²

2007

37th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN'07)

View full text Add to dashboard Cite

show abstract

“…During our initial investigations with Ballista, we noticed a number of robustness failures in the math libraries in FreeBSD [24]. As an initial study, we chose to address these issues and determine how robust the libraries could be made, and at what cost.…”

Section: Resultsmentioning

confidence: 99%

“…Operating systems have shown to have at times poor robustness [24] [12]. Commercial distributed computing frameworks such as CORBA client software tend to exhibit problems as well [31].…”

Section: Introductionmentioning

confidence: 99%