完整後設資料紀錄
DC 欄位語言
dc.contributor.authorLai, Yuan-Chengen_US
dc.contributor.authorLin, Ying-Daren_US
dc.contributor.authorWu, Fan-Chengen_US
dc.contributor.authorHuang, Tze-Yauen_US
dc.contributor.authorLin, Frank C.en_US
dc.date.accessioned2014-12-08T15:20:39Z-
dc.date.available2014-12-08T15:20:39Z-
dc.date.issued2011-11-01en_US
dc.identifier.issn0916-8532en_US
dc.identifier.urihttp://dx.doi.org/10.1587/transinf.E94.D.2129en_US
dc.identifier.urihttp://hdl.handle.net/11536/14679-
dc.description.abstractA buffer overflow attack occurs when a program writes data outside the allocated memory in an attempt to invade a system. Approximately forty percent of all software vulnerabilities over the past several years are attributed to buffer overflow. Taint tracking is a novel technique to prevent buffer overflow. Previous studies on taint tracking ran a victim's program on an emulator to dynamically instrument the code for tracking the propagation of taint data in memory and checking whether malicious code is executed. However, the critical problem of this approach is its heavy performance overhead. Analysis of this overhead shows that 60% of the overhead is from the emulator, and the remaining 40% is from dynamic instrumentation and taint information maintenance. This article proposes a new taint-style system called Embedded TaintTracker to eliminate the overhead in the emulator and dynamic instrumentation by compressing a checking mechanism into the operating system (OS) kernel and moving the instrumentation from runtime to compilation time. Results show that the proposed system outperforms the previous work. TaintCheck, by at least 8 times on throughput degradation, and is about 17.5 times faster than TaintCheck when browsing 1 KB web pages.en_US
dc.language.isoen_USen_US
dc.subjectsoftware securityen_US
dc.subjectbuffer overflowen_US
dc.subjecttaint trackingen_US
dc.titleEmbedded TaintTracker: Lightweight Run-Time Tracking of Taint Data against Buffer Overflow Attacksen_US
dc.typeArticleen_US
dc.identifier.doi10.1587/transinf.E94.D.2129en_US
dc.identifier.journalIEICE TRANSACTIONS ON INFORMATION AND SYSTEMSen_US
dc.citation.volumeE94Den_US
dc.citation.issue11en_US
dc.citation.spage2129en_US
dc.citation.epage2138en_US
dc.contributor.department資訊工程學系zh_TW
dc.contributor.departmentDepartment of Computer Scienceen_US
dc.identifier.wosnumberWOS:000296673400008-
dc.citation.woscount1-
顯示於類別:期刊論文


文件中的檔案:

  1. 000296673400008.pdf

若為 zip 檔案,請下載檔案解壓縮後,用瀏覽器開啟資料夾中的 index.html 瀏覽全文。