Skip to main content
Conference Proceedings

GHUMVEE: Efficient, effective, and flexible replication

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2013) 7743 LNCS 261-277
DOI: 10.1007/978-3-642-37119-6_17
17Citations
Citations of this article
24Readers
Mendeley users who have this article in their library.
Get full text

Abstract

We present GHUMVEE, a multi-variant execution engine for software intrusion detection. GHUMVEE transparently executes and monitors diversified replicae of processes to thwart attacks relying on a predictable, single data layout. Unlike existing tools, GHUMVEE's interventions in the process' execution are not limited to system call invocations. Because of that design decision, GHUMVEE can handle complex, multi-threaded real-life programs that display non-deterministic behavior as a result of non-deterministic thread scheduling and as a result of pointer-value dependent behavior. This capability is demonstrated on GUI programs from the Gnome and KDE desktop environments. © 2013 Springer-Verlag.

Author supplied keywords

Cite

CITATION STYLE

APA

Volckaert, S., De Sutter, B., De Baets, T., & De Bosschere, K. (2013). GHUMVEE: Efficient, effective, and flexible replication. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 7743 LNCS, pp. 261–277). https://doi.org/10.1007/978-3-642-37119-6_17

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free