Runtime Detection of Zero-Day Vulnerability Exploits in Contemporary Software Systems

Abstract : It is argued that runtime verification techniques can be used to identify unknown application security vulnerabilities that are a consequence of unexpected execution paths in software. A methodology is proposed that can be used to build a model of expected application execution paths during the software development cycle. This model is used at runtime to detect exploitation of unknown security vulnerabilities using anomaly detection style techniques. The approach is evaluated by considering its effectiveness in identifying 19 vulnerabilities across 26 versions of Apache Struts over a 5 year period.
Type de document :
Communication dans un congrès
Silvio Ranise; Vipin Swarup. 30th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec), Jul 2016, Trento, Italy. Springer International Publishing, Lecture Notes in Computer Science, LNCS-9766, pp.347-363, 2016, Data and Applications Security and Privacy XXX. 〈10.1007/978-3-319-41483-6_24〉
Liste complète des métadonnées

Littérature citée [19 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01633685
Contributeur : Hal Ifip <>
Soumis le : lundi 13 novembre 2017 - 11:46:44
Dernière modification le : lundi 13 novembre 2017 - 11:48:23
Document(s) archivé(s) le : mercredi 14 février 2018 - 12:58:32

Fichier

 Accès restreint
Fichier visible le : 2019-01-01

Connectez-vous pour demander l'accès au fichier

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Olgierd Pieczul, Simon Foley. Runtime Detection of Zero-Day Vulnerability Exploits in Contemporary Software Systems. Silvio Ranise; Vipin Swarup. 30th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec), Jul 2016, Trento, Italy. Springer International Publishing, Lecture Notes in Computer Science, LNCS-9766, pp.347-363, 2016, Data and Applications Security and Privacy XXX. 〈10.1007/978-3-319-41483-6_24〉. 〈hal-01633685〉

Partager

Métriques

Consultations de la notice

74