Finite state machine based approach to prevent format string attacks
In the computer field there are many types of input validation attacks that occur, in which "Format String Overflow Attacks" is one of the most important. Format String Overflow Attacks remain the leading reason of software vulnerability or exploits. Format string bugs result in error such...
Gespeichert in:
| Veröffentlicht in: | Software engineering notes 2011-09, Vol.36 (5), p.1-7 |
|---|---|
| Hauptverfasser: | , , |
| Format: | Artikel |
| Sprache: | eng |
| Online-Zugang: | Volltext |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | 7 |
|---|---|
| container_issue | 5 |
| container_start_page | 1 |
| container_title | Software engineering notes |
| container_volume | 36 |
| creator | Yadav, Seema Ahamd, Khaleel Shekhar, Jayant |
| description | In the computer field there are many types of input validation attacks that occur, in which "Format String Overflow Attacks" is one of the most important. Format String Overflow Attacks remain the leading reason of software vulnerability or exploits. Format string bugs result in error such as wrong result type, memory access error and crash and security breach. In this paper , we proposed a Finite state machine which prevents Format String Overflow Attacks in a secure way with the help of several states of FSM. Proper checking against format string overflow bugs can avoid consequences due to exploits of format string overflow bugs. The result of our proposed finite state machine is improving the security problem and provides protection to memory access from any unauthorized user. |
| doi_str_mv | 10.1145/2020976.2020997 |
| format | Article |
| fullrecord | <record><control><sourceid>crossref</sourceid><recordid>TN_cdi_crossref_primary_10_1145_2020976_2020997</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>10_1145_2020976_2020997</sourcerecordid><originalsourceid>FETCH-crossref_primary_10_1145_2020976_20209973</originalsourceid><addsrcrecordid>eNqVjksKwjAURTNQsH7GTrOBtkn_HavFBTgPz5pq1DbhvSC4e6t0A07ugcu9cBjbShFJmeVxIhJRl0X0Y13OWCBkkYZ5nVULtiS6CyErWVQB2zdmMF5z8jBmD-3NDJqfgfSFg3Nox4Z7yx3qlx487yz24Mc5muHKwXtoH7Rm8w6epDcTVyxuDqfdMWzREqHulEPTA76VFOorqCZBNQmm_z8-ipNEIg</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype></control><display><type>article</type><title>Finite state machine based approach to prevent format string attacks</title><source>ACM Digital Library Complete</source><creator>Yadav, Seema ; Ahamd, Khaleel ; Shekhar, Jayant</creator><creatorcontrib>Yadav, Seema ; Ahamd, Khaleel ; Shekhar, Jayant</creatorcontrib><description>In the computer field there are many types of input validation attacks that occur, in which "Format String Overflow Attacks" is one of the most important. Format String Overflow Attacks remain the leading reason of software vulnerability or exploits. Format string bugs result in error such as wrong result type, memory access error and crash and security breach. In this paper , we proposed a Finite state machine which prevents Format String Overflow Attacks in a secure way with the help of several states of FSM. Proper checking against format string overflow bugs can avoid consequences due to exploits of format string overflow bugs. The result of our proposed finite state machine is improving the security problem and provides protection to memory access from any unauthorized user.</description><identifier>ISSN: 0163-5948</identifier><identifier>DOI: 10.1145/2020976.2020997</identifier><language>eng</language><ispartof>Software engineering notes, 2011-09, Vol.36 (5), p.1-7</ispartof><woscitedreferencessubscribed>false</woscitedreferencessubscribed><cites>FETCH-crossref_primary_10_1145_2020976_20209973</cites></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><link.rule.ids>314,776,780,27901,27902</link.rule.ids></links><search><creatorcontrib>Yadav, Seema</creatorcontrib><creatorcontrib>Ahamd, Khaleel</creatorcontrib><creatorcontrib>Shekhar, Jayant</creatorcontrib><title>Finite state machine based approach to prevent format string attacks</title><title>Software engineering notes</title><description>In the computer field there are many types of input validation attacks that occur, in which "Format String Overflow Attacks" is one of the most important. Format String Overflow Attacks remain the leading reason of software vulnerability or exploits. Format string bugs result in error such as wrong result type, memory access error and crash and security breach. In this paper , we proposed a Finite state machine which prevents Format String Overflow Attacks in a secure way with the help of several states of FSM. Proper checking against format string overflow bugs can avoid consequences due to exploits of format string overflow bugs. The result of our proposed finite state machine is improving the security problem and provides protection to memory access from any unauthorized user.</description><issn>0163-5948</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2011</creationdate><recordtype>article</recordtype><recordid>eNqVjksKwjAURTNQsH7GTrOBtkn_HavFBTgPz5pq1DbhvSC4e6t0A07ugcu9cBjbShFJmeVxIhJRl0X0Y13OWCBkkYZ5nVULtiS6CyErWVQB2zdmMF5z8jBmD-3NDJqfgfSFg3Nox4Z7yx3qlx487yz24Mc5muHKwXtoH7Rm8w6epDcTVyxuDqfdMWzREqHulEPTA76VFOorqCZBNQmm_z8-ipNEIg</recordid><startdate>20110930</startdate><enddate>20110930</enddate><creator>Yadav, Seema</creator><creator>Ahamd, Khaleel</creator><creator>Shekhar, Jayant</creator><scope>AAYXX</scope><scope>CITATION</scope></search><sort><creationdate>20110930</creationdate><title>Finite state machine based approach to prevent format string attacks</title><author>Yadav, Seema ; Ahamd, Khaleel ; Shekhar, Jayant</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-crossref_primary_10_1145_2020976_20209973</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2011</creationdate><toplevel>online_resources</toplevel><creatorcontrib>Yadav, Seema</creatorcontrib><creatorcontrib>Ahamd, Khaleel</creatorcontrib><creatorcontrib>Shekhar, Jayant</creatorcontrib><collection>CrossRef</collection><jtitle>Software engineering notes</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Yadav, Seema</au><au>Ahamd, Khaleel</au><au>Shekhar, Jayant</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Finite state machine based approach to prevent format string attacks</atitle><jtitle>Software engineering notes</jtitle><date>2011-09-30</date><risdate>2011</risdate><volume>36</volume><issue>5</issue><spage>1</spage><epage>7</epage><pages>1-7</pages><issn>0163-5948</issn><abstract>In the computer field there are many types of input validation attacks that occur, in which "Format String Overflow Attacks" is one of the most important. Format String Overflow Attacks remain the leading reason of software vulnerability or exploits. Format string bugs result in error such as wrong result type, memory access error and crash and security breach. In this paper , we proposed a Finite state machine which prevents Format String Overflow Attacks in a secure way with the help of several states of FSM. Proper checking against format string overflow bugs can avoid consequences due to exploits of format string overflow bugs. The result of our proposed finite state machine is improving the security problem and provides protection to memory access from any unauthorized user.</abstract><doi>10.1145/2020976.2020997</doi></addata></record> |
| fulltext | fulltext |
| identifier | ISSN: 0163-5948 |
| ispartof | Software engineering notes, 2011-09, Vol.36 (5), p.1-7 |
| issn | 0163-5948 |
| language | eng |
| recordid | cdi_crossref_primary_10_1145_2020976_2020997 |
| source | ACM Digital Library Complete |
| title | Finite state machine based approach to prevent format string attacks |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-28T14%3A47%3A20IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-crossref&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Finite%20state%20machine%20based%20approach%20to%20prevent%20format%20string%20attacks&rft.jtitle=Software%20engineering%20notes&rft.au=Yadav,%20Seema&rft.date=2011-09-30&rft.volume=36&rft.issue=5&rft.spage=1&rft.epage=7&rft.pages=1-7&rft.issn=0163-5948&rft_id=info:doi/10.1145/2020976.2020997&rft_dat=%3Ccrossref%3E10_1145_2020976_2020997%3C/crossref%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true |