Server Protection through Dynamic Patching

13 years 10 months ago

Download www.emn.fr

Recently, hackers has been developing fast propagating worms exploiting vulnerabilities that had just been disclosed by security experts. Those attacks particularly expose servers: this class of applications is constantly connected to the Internet and must meet uptime constraints. Hence they often run unprotected until the next scheduled update. In this paper, we propose a just-in-time protection for servers based on runtime injection of pre-made patches. The runtime injection permits to deal with uptime constraints and induces only a minimal overhead over the vulnerable code and only when a vulnerability is known to exist. The pre-made patches forbid exploitation of most common vulnerabilities (45% of attacks reported by Debian security in 2005 affecting C softwares) and allows continuous servicing.

Nicolas Loriant, Marc Ségura-Devillechaise,

Real-time Traffic

Dependable Computing | PRDC 2005 | Pre-made Patches | Runtime Injection | Uptime Constraints |

claim paper

» A Prototype Secure Workflow Server

» Modular Protections against Noncontrol Data Attacks

» Java Security Extensions for a Java Server in a Hostile Environment

» Hybrid staticdynamic attacks against software protection mechanisms

» Archipelago trading address space for reliability and security

» Kernel Plugins When a VM Is Too Much

» Secure Content Distribution System Based on RunTime Partial Hardware Reconfiguration

» Risk management in VoIP infrastructures using support vector machines

Post Info
More Details (n/a)

Added	25 Jun 2010
Updated	25 Jun 2010
Type	Conference
Year	2005
Where	PRDC
Authors	Nicolas Loriant, Marc Ségura-Devillechaise, Jean-Marc Menaud

Comments (0)

Sciweavers

Server Protection through Dynamic Patching

Dependable Computing | PRDC 2005 | Pre-made Patches | Runtime Injection | Uptime Constraints |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers