Independence From Obfuscation: A Semantic Framework for Dive

CC
CSFW
2006
19th IEEE Computer Security Foundations Workshop (CSFW'06)
Abstract - Independence From Obfuscation: A Semantic Framework for Dive

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Riccardo Pucella Articles by Fred B. Schneider

19th IEEE Computer Security Foundations Workshop (CSFW'06)

Venice, Italy

July 05-July 07

ISBN: 0-7695-2615-2

	ASCII Text	x
	Riccardo Pucella, Fred B. Schneider, "Independence From Obfuscation: A Semantic Framework for Dive," Computer Security Foundations Workshop, IEEE, pp. 230-241, 19th IEEE Computer Security Foundations Workshop (CSFW'06), 2006.

	BibTex	x
	@article{ 10.1109/CSFW.2006.15, author = {Riccardo Pucella and Fred B. Schneider}, title = {Independence From Obfuscation: A Semantic Framework for Dive}, journal ={Computer Security Foundations Workshop, IEEE}, volume = {0}, year = {2006}, issn = {1063-6900}, pages = {230-241}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSFW.2006.15}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Foundations Workshop, IEEE TI - Independence From Obfuscation: A Semantic Framework for Dive SN - 1063-6900 SP230 EP241 A1 - Riccardo Pucella, A1 - Fred B. Schneider, PY - 2006 KW - null VL - 0 JA - Computer Security Foundations Workshop, IEEE ER -

Riccardo Pucella, Northeastern University, USA

Fred B. Schneider, Cornell University, USA

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CSFW.2006.15

A set of replicas is diverse to the extent that all implement the same functionality but differ in their implementation details. Diverse replicas are less prone to having vulnerabilities in common, because attacks typically depend on memory layout and/or instruction-sequence specifics. Recent work advocates using mechanical means, such as program rewriting, to create such diversity. A correspondence between the specific transformations being employed and the attacks they defend against is often provided, but little has been said about the overall effectiveness of diversity per se in defending against attacks. With this broader goal in mind, we here give a precise characterization of attacks, applicable to viewing diversity as a defense, and also show how mechanically-generated diversity compares to a wellunderstood defense: strong typing.

Citation:

Riccardo Pucella, Fred B. Schneider, "Independence From Obfuscation: A Semantic Framework for Dive," csfw, pp.230-241, 19th IEEE Computer Security Foundations Workshop (CSFW'06), 2006

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.