Buffer Overrun Prevention Through Component Composition Analysis

Edinburgh, Scotland July 26-July 28

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/COMPSAC.2005.54

29th Annual International Computer So ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles

	ASCII Text	x
	"Buffer Overrun Prevention Through Component Composition Analysis," Computer Software and Applications Conference, Annual International, vol. 1, pp. 156-163, 29th Annual International Computer Software and Applications Conference (COMPSAC'05) Volume 1, 2005.

	BibTex	x
	@article{ 10.1109/COMPSAC.2005.54, author = {}, title = {Buffer Overrun Prevention Through Component Composition Analysis}, journal ={Computer Software and Applications Conference, Annual International}, volume = {1}, year = {2005}, issn = {0730-3157}, pages = {156-163}, doi = {http://doi.ieeecomputersociety.org/10.1109/COMPSAC.2005.54}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Software and Applications Conference, Annual International TI - Buffer Overrun Prevention Through Component Composition Analysis SN - 0730-3157 SP156 EP163 PY - 2005 KW - Buffer overrun KW - component composition KW - security KW - code analysis VL - 1 JA - Computer Software and Applications Conference, Annual International ER -

Buffer overrun vulnerabilities cause significant security problems, and have proven to be difficult to prevent. In this paper we present a novel approach to tackling the problem. Rather than concentrate on how to prevent the use of code containing buffer overrun vulnerabilities, we look at component composition techniques that can allow vulnerable code to be executed in a safe way within a composed application. We establish how this can be determined in an automated way using formal code analysis techniques and present results from the prototype system that we have developed for this purpose.

Index Terms:

Buffer overrun, component composition, security, code analysis

Citation:

"Buffer Overrun Prevention Through Component Composition Analysis," compsac, vol. 1, pp.156-163, 29th Annual International Computer Software and Applications Conference (COMPSAC'05) Volume 1, 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.