Skip to main content
Conference Proceedings

Automatic software instrumentation for the detection of non-control-data attacks

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2009) 5758 LNCS 348-349
DOI: 10.1007/978-3-642-04342-0_19
0Citations
Citations of this article
7Readers
Mendeley users who have this article in their library.
Get full text

Abstract

To detect intrusions resulting of an attack that corrupted data items used by a program to perform its computation, we propose an approach that automatically instruments programs to control a data-based behavior model during their execution. We build our model by discovering the sets of data the system calls depend on and which constraints these sets must verify at runtime. We have implemented our approach using a static analysis framework called Frama-C and we present the results of experimentations on a vulnerable version of OpenSSH. © 2009 Springer Berlin Heidelberg.

Cite

CITATION STYLE

APA

Demay, J. C., Totel, É., & Tronel, F. (2009). Automatic software instrumentation for the detection of non-control-data attacks. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 5758 LNCS, pp. 348–349). https://doi.org/10.1007/978-3-642-04342-0_19

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free