Title :
Pinpointing patch impact test targets using kernel tracing
Author :
Hori, K. ; Yoshihara, K.
Author_Institution :
Ubiquitous Networking Lab., KDDI R&D Labs. Inc., Fujimino, Japan
Abstract :
Prompt updating against the latest security threats is important, and conveniently achieved by using patches (i.e., software updates) on both servers and PCs in a timely manner. To apply patches safely, however, their impact should be examined in advance. Administrators need to pinpoint all the software programs that are potentially influenced by a patch. Our patch impact analyzer monitors the program´s runtime behavior (i.e., library loadings) and identifies the full paths of those programs based on the kernel tracing method. Our method can identify even short-lived processes by introducing a self-constructed database of a program´s full paths and process information. Evaluation using our prototype implementation and method shows that the full paths can be identified in about 99% of the library loading events.
Keywords :
operating system kernels; security of data; software engineering; kernel tracing; patch impact test targets pinpointing; prompt updating; security threats; self-constructed database; software programs; Databases; Kernel; Libraries; Loading; Probes; Servers; Testing; Kernel; Software Patch Management; tracing;
Conference_Titel :
Network and Service Management (CNSM), 2010 International Conference on
Conference_Location :
Niagara Falls, ON
Print_ISBN :
978-1-4244-8910-7
Electronic_ISBN :
978-1-4244-8908-4
DOI :
10.1109/CNSM.2010.5691217
