Please use this identifier to cite or link to this item:
|Title:||Towards generating high coverage vulnerability-based signatures with protocol-level constraint-guided exploration||Authors:||Caballero, J.
|Issue Date:||2009||Citation:||Caballero, J.,Liang, Z.,Poosankam, P.,Song, D. (2009). Towards generating high coverage vulnerability-based signatures with protocol-level constraint-guided exploration. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) 5758 LNCS : 161-181. ScholarBank@NUS Repository. https://doi.org/10.1007/978-3-642-04342-0_9||Abstract:||Signature-based input filtering is an important and widely deployed defense. But current signature generation methods have limited coverage and the generated signatures often can be easily evaded by an attacker with small variations of the exploit message. In this paper, we propose protocol-level constraint-guided exploration, a new approach towards generating high coverage vulnerability-based signatures. In particular, our approach generates high coverage, yet compact, vulnerability point reachability predicates, which capture many paths to the vulnerability point. In our experimental results, our tool, Elcano, generates compact, high coverage signatures for real-world vulnerabilities. © 2009 Springer Berlin Heidelberg.||Source Title:||Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)||URI:||http://scholarbank.nus.edu.sg/handle/10635/40393||ISBN:||3642043410||ISSN:||03029743||DOI:||10.1007/978-3-642-04342-0_9|
|Appears in Collections:||Staff Publications|
Show full item record
Files in This Item:
There are no files associated with this item.
checked on Sep 21, 2021
checked on Sep 24, 2021
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.