Server Protection through Dynamic Patching

14 years 4 months ago

Download www.emn.fr

Recently, hackers has been developing fast propagating worms exploiting vulnerabilities that had just been disclosed by security experts. Those attacks particularly expose servers: this class of applications is constantly connected to the Internet and must meet uptime constraints. Hence they often run unprotected until the next scheduled update. In this paper, we propose a just-in-time protection for servers based on runtime injection of pre-made patches. The runtime injection permits to deal with uptime constraints and induces only a minimal overhead over the vulnerable code and only when a vulnerability is known to exist. The pre-made patches forbid exploitation of most common vulnerabilities (45% of attacks reported by Debian security in 2005 affecting C softwares) and allows continuous servicing.

Nicolas Loriant, Marc Ségura-Devillechaise,

Real-time Traffic

Dependable Computing | PRDC 2005 | Pre-made Patches | Runtime Injection | Uptime Constraints |

claim paper

» A Prototype Secure Workflow Server

» Modular Protections against Noncontrol Data Attacks

» Java Security Extensions for a Java Server in a Hostile Environment

» Hybrid staticdynamic attacks against software protection mechanisms

» Archipelago trading address space for reliability and security

» Kernel Plugins When a VM Is Too Much

» Secure Content Distribution System Based on RunTime Partial Hardware Reconfiguration

» Risk management in VoIP infrastructures using support vector machines

Post Info
More Details (n/a)

Added	25 Jun 2010
Updated	25 Jun 2010
Type	Conference
Year	2005
Where	PRDC
Authors	Nicolas Loriant, Marc Ségura-Devillechaise, Jean-Marc Menaud

Comments (0)

Sciweavers

Server Protection through Dynamic Patching

Dependable Computing | PRDC 2005 | Pre-made Patches | Runtime Injection | Uptime Constraints |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers