HomeHome

A Model for Automatically Repairing Execution Integrity

Michael E. Locasto; Gabriela F. Cretu; Angelos Stavrou; Angelos D. Keromytis

Title:
A Model for Automatically Repairing Execution Integrity
Author(s):
Locasto, Michael E.
Cretu, Gabriela F.
Stavrou, Angelos
Keromytis, Angelos D.
Date:
Type:
Reports
Department(s):
Computer Science
Persistent URL:
Series:
Columbia University Computer Science Technical Reports
Part Number:
CUCS-005-07
Publisher:
Department of Computer Science, Columbia University
Publisher Location:
New York
Abstract:
Many users value applications that continue execution in the face of attacks. Current software protection techniques typically abort a process after an intrusion attempt ({\it e.g.}, a code injection attack). We explore ways in which the security property of integrity can support availability. We extend the Clark-Wilson Integrity Model to provide primitives and rules for specifying and enforcing repair mechanisms and validation of those repairs. Users or administrators can use this model to write or automatically synthesize \emph{repair policy}. The policy can help customize an application's response to attack. We describe two prototype implementations for transparently applying these policies without modifying source code.
Subject(s):
Computer science
Item views
258
Metadata:
text | xml
Suggested Citation:
Michael E. Locasto, Gabriela F. Cretu, Angelos Stavrou, Angelos D. Keromytis, , A Model for Automatically Repairing Execution Integrity, Columbia University Academic Commons, .

Columbia University Libraries | Policies | FAQ