Server Protection through Dynamic Patching

P
PRDC
2005
11th Pacific Rim International Symposium on Dependable Computing (PRDC'05)
Abstract - Server Protection through Dynamic Patching

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Nicolas Loriant Articles by Marc Segura-Devillechaise Articles by Jean-Marc Menaud

11th Pacific Rim International Symposium on Dependable Computing (PRDC'05)

Changsha, Hunan, China

December 12-December 14

ISBN: 0-7695-2492-3

	ASCII Text	x
	Nicolas Loriant, Marc Segura-Devillechaise, Jean-Marc Menaud, "Server Protection through Dynamic Patching," Pacific Rim International Symposium on Dependable Computing, IEEE, pp. 343-349, 11th Pacific Rim International Symposium on Dependable Computing (PRDC'05), 2005.

	BibTex	x
	@article{ 10.1109/PRDC.2005.56, author = {Nicolas Loriant and Marc Segura-Devillechaise and Jean-Marc Menaud}, title = {Server Protection through Dynamic Patching}, journal ={Pacific Rim International Symposium on Dependable Computing, IEEE}, volume = {0}, year = {2005}, isbn = {0-7695-2492-3}, pages = {343-349}, doi = {http://doi.ieeecomputersociety.org/10.1109/PRDC.2005.56}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Pacific Rim International Symposium on Dependable Computing, IEEE TI - Server Protection through Dynamic Patching SN - 0-7695-2492-3 SP343 EP349 A1 - Nicolas Loriant, A1 - Marc Segura-Devillechaise, A1 - Jean-Marc Menaud, PY - 2005 KW - null VL - 0 JA - Pacific Rim International Symposium on Dependable Computing, IEEE ER -

Nicolas Loriant, EMN-INRIA, LINA, Cedex, France

Marc Segura-Devillechaise, EMN-INRIA, LINA, Cedex, France

Jean-Marc Menaud, EMN-INRIA, LINA, Cedex, France

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/PRDC.2005.56

Recently, hackers has been developing fast propagating worms exploiting vulnerabilities that had just been disclosed by security experts. Those attacks particularly expose servers: this class of applications is constantly connected to the Internet and must meet uptime constraints. Hence they often run unprotected until the next scheduled update.

In this paper, we propose a just-in-time protection for servers based on runtime injection of pre-made patches. The runtime injection permits to deal with uptime constraints and induces only a minimal overhead over the vulnerable code and only when a vulnerability is known to exist. The pre-made patches forbid exploitation of most common vulnerabilities (45% of attacks reported by Debian security in 2005 affecting C softwares) and allows continuous servicing.

Citation:

Nicolas Loriant, Marc Segura-Devillechaise, Jean-Marc Menaud, "Server Protection through Dynamic Patching," prdc, pp.343-349, 11th Pacific Rim International Symposium on Dependable Computing (PRDC'05), 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.