DocumentCode
1425018
Title
A Taxonomy of Buffer Overflow Characteristics
Author
Bishop, Matt ; Engle, Sophie ; Howard, Damien ; Whalen, Sean
Author_Institution
Dept. of Comput. Sci., Univ. of California, Davis, CA, USA
Volume
9
Issue
3
fYear
2012
Firstpage
305
Lastpage
317
Abstract
Significant work on vulnerabilities focuses on buffer overflows, in which data exceeding the bounds of an array is loaded into the array. The loading continues past the array boundary, causing variables and state information located adjacent to the array to change. As the process is not programmed to check for these additional changes, the process acts incorrectly. The incorrect action often places the system in a nonsecure state. This work develops a taxonomy of buffer overflow vulnerabilities based upon characteristics, or preconditions that must hold for an exploitable buffer overflow to exist. We analyze several software and hardware countermeasures to validate the approach. We then discuss alternate approaches to ameliorating this vulnerability.
Keywords
classification; program verification; array boundary; buffer overflow characteristics; buffer overflow vulnerability; hardware countermeasure; nonsecure state; software countermeasure; taxonomy; Arrays; Educational institutions; Electronic mail; Grippers; Security; Taxonomy; Web servers; Protection mechanisms; arrays.; security and privacy; software/program verification;
fLanguage
English
Journal_Title
Dependable and Secure Computing, IEEE Transactions on
Publisher
ieee
ISSN
1545-5971
Type
jour
DOI
10.1109/TDSC.2012.10
Filename
6133295
Link To Document