skip to main content
article
Free Access

Software security is software reliability

Published:01 June 2006Publication History
Skip Abstract Section

Abstract

Enlist hacker expertise, but stay with academic fault naming conventions, when defending against the risk of exploitation of vulnerabilities and intrusions.

References

  1. Barrantes, E., Ackley, D., Forrest, S., Palmer, T., Stefanopvic, D., and Zovi, D. Randomized instruction set emulation to disrupt binary code injection attacks. In Proceedings of the 10th ACM Conference on Computer and Communications Security (2003); www.cs.unm.edu/~gbarrant/RISE.html. Google ScholarGoogle ScholarDigital LibraryDigital Library
  2. Cespedes, J. ltrace. Online documentation; packages.debian.org/unstable/utils/ltrace.html.Google ScholarGoogle Scholar
  3. Etoh, H. GCC Extension for Protecting Applications from Stack-smashing Attacks. Technical report and source code, first published May 8, 2001; www.trl.ibm.com/projects/security/ssp/.Google ScholarGoogle Scholar
  4. Flake, H. Structural comparison of executable objects. In Proceedings of the Conference on Detection of Intrusions and Malware & Vulnerability Assessment (Dortmund, Germany, July 6--7, 2004), 161--173.Google ScholarGoogle Scholar
  5. Kuperman, B., Brodley, C., Ozdoganoglu, H., Vijaykumar, T., and Jalote, A. Detection and prevention of stack buffer overflow attacks. Commun. ACM 11, 48 (Nov. 2005), 50--56. Google ScholarGoogle ScholarDigital LibraryDigital Library
  6. Microsoft. Visual C Compiler Stack Protection. Microsoft Visual Studio 2005 documentation; msdn.microsoft.com/library/en-us/vccore/html/vclrfGSBufferSecurity.asp.Google ScholarGoogle Scholar
  7. National Institute of Standards and Technology. National Vulnerability Database, Gaithersburg, MD; nvd.nist.gov/.Google ScholarGoogle Scholar
  8. Reidel, D. Expository practice: Social, cognitive and epistemological linkages. In Expository Science, T. Shinn and R. Witley, Eds., 1985, 31--60.Google ScholarGoogle Scholar
  9. Trenn, T. and Merton, R., Eds. The Genesis and Development of a Scientific Fact. University of Chicago Press, Chicago, 1979.Google ScholarGoogle Scholar

Index Terms

  1. Software security is software reliability

              Recommendations

              Comments

              Login options

              Check if you have access through your login credentials or your institution to get full access on this article.

              Sign in

              Full Access

              • Published in

                cover image Communications of the ACM
                Communications of the ACM  Volume 49, Issue 6
                Hacking and innovation
                June 2006
                108 pages
                ISSN:0001-0782
                EISSN:1557-7317
                DOI:10.1145/1132469
                Issue’s Table of Contents

                Copyright © 2006 ACM

                Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

                Publisher

                Association for Computing Machinery

                New York, NY, United States

                Publication History

                • Published: 1 June 2006

                Permissions

                Request permissions about this article.

                Request Permissions

                Check for updates

                Qualifiers

                • article

              PDF Format

              View or Download as a PDF file.

              PDF

              eReader

              View online with eReader.

              eReader

              HTML Format

              View this article in HTML Format .

              View HTML Format