Runtime Detection of Zero-Day Vulnerability Exploits in Contemporary Software Systems - Data and Applications Security and Privacy XXX
Conference Papers Year : 2016

Runtime Detection of Zero-Day Vulnerability Exploits in Contemporary Software Systems

Olgierd Pieczul
  • Function : Author
  • PersonId : 1022681
Simon N. Foley
  • Function : Author
  • PersonId : 1001643

Abstract

It is argued that runtime verification techniques can be used to identify unknown application security vulnerabilities that are a consequence of unexpected execution paths in software. A methodology is proposed that can be used to build a model of expected application execution paths during the software development cycle. This model is used at runtime to detect exploitation of unknown security vulnerabilities using anomaly detection style techniques. The approach is evaluated by considering its effectiveness in identifying 19 vulnerabilities across 26 versions of Apache Struts over a 5 year period.
Fichier principal
Vignette du fichier
428203_1_En_24_Chapter.pdf (315.73 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01633685 , version 1 (13-11-2017)

Licence

Identifiers

Cite

Olgierd Pieczul, Simon N. Foley. Runtime Detection of Zero-Day Vulnerability Exploits in Contemporary Software Systems. 30th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec), Jul 2016, Trento, Italy. pp.347-363, ⟨10.1007/978-3-319-41483-6_24⟩. ⟨hal-01633685⟩
262 View
277 Download

Altmetric

Share

More