Presentation | 2011/7/5 Program Transformer for Injecting Numerous Harmless Bugs YOSHIHIRO OYAMA, TOMOKI KAI, |
---|---|
PDF Download Page | PDF download Page Link |
Abstract(in Japanese) | (See Japanese page) |
Abstract(in English) | A number of vulnerability checkers, which analyze a program and detect potential vulnerabilities, have been developed. Vulnerability checkers are usually used for good purpose: early detection of vulnerabilities for patching programs before being exploited. However, malicious persons can also misuse the checkers to find out exploitable vulnerabilities efficiently. A technology that obstructs scanning operations by attackers will increase the cost needed for successful attacks and consequently reduce attack attempts. In this paper, we propose a scheme for obstructing the operations of vulnerability detection using vulnerability checkers. The scheme transforms a source program and injects numerous bugs that are detected by vulnerability checkers but cannot be exploited. For example, the transformation adds buggy code causing a buffer overflow in which an attacker can never take the control. Since a vulnerability scanner outputs plenty of warnings against the injected bugs, actual vulnerabilities, if any, become more inconspicuous. |
Keyword(in Japanese) | (See Japanese page) |
Keyword(in English) | |
Paper # | |
Date of Issue |
Conference Information | |
Committee | SITE |
---|---|
Conference Date | 2011/7/5(1days) |
Place (in Japanese) | (See Japanese page) |
Place (in English) | |
Topics (in Japanese) | (See Japanese page) |
Topics (in English) | |
Chair | |
Vice Chair | |
Secretary | |
Assistant |
Paper Information | |
Registration To | Social Implications of Technology and Information Ethics (SITE) |
---|---|
Language | JPN |
Title (in Japanese) | (See Japanese page) |
Sub Title (in Japanese) | (See Japanese page) |
Title (in English) | Program Transformer for Injecting Numerous Harmless Bugs |
Sub Title (in English) | |
Keyword(1) | |
1st Author's Name | YOSHIHIRO OYAMA |
1st Author's Affiliation | The University of Electro-Communications() |
2nd Author's Name | TOMOKI KAI |
2nd Author's Affiliation | The University of Electro-Communications |
Date | 2011/7/5 |
Paper # | |
Volume (vol) | vol.111 |
Number (no) | 124 |
Page | pp.pp.- |
#Pages | 7 |
Date of Issue |