(will be inserted by the editor) Detection of File-Based Race Conditions...  Home/Search
Context
Related
| syr.edu/~chapin/papers/pdf/race.pdf Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: syr.edu/~chapin/papers/allpub (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: Multiprocessing environments such as Unix are susceptible to race conditions on the file space, since processes share files in the system. A process accessing a file may get unexpected results while executing in a critical section, if the binding between the file name and the file object is altered by another process. Such errors, called Time-of-check-to-time-of-use (TOCTTOU) binding flaws, are among the most prevalent security flaws. This paper presents a model that detects TOCTTOU binding... (Update)
Active bibliography (related documents): More All
0.5: Unknown - (Correct)
0.5: Automated Detection of Vulnerabilities in Privileged.. - Ko, Fink, Levitt (1994) (Correct)
0.5: Improving Computer Security using Extended Static Checking - Chess (2002) (Correct)
Similar documents based on text: More All
0.2: Buffer Overflow and Format String Overflow Vulnerabilities - Lhee, Chapin (2002) (Correct)
0.2: Proceedings of the 2003 IEEE - Workshop On Information (Correct)
0.2: Support for Implementing Scheduling Algorithms Using Messiahs - Chapin, Spafford (1994) (Correct)
BibTeX entry: (Update)
@misc{ inserted-international,
author = "Will Be Inserted",
title = "International Journal of Information Security manuscript No.",
url = "citeseer.ist.psu.edu/735900.html" }
Citations (may not include all citations):142 A Sense of Self for Unix Processes - Forrest, Hofmeyr - 1996
106 Advanced Programming in the UNIX Environment (context) - WR - 1992 ACM
105 State Transition Analysis: A Rule-Based Intrusion Detection .. - Ilgun - 1995 DBLP
103 ACM Transactions on Graphics (context) - RW, The et al. - 1987
58 A Pattern Matching Model for Misuse Intrusion Detection - Kumar - 1994
52 Checking for Race Conditions in File Accesses - Bishop, Dilger - 1996 DBLP
52 Automated Detection of Vulnerabilities in Privileged Program.. - Ko, Fink et al. - 1994
35 A Taxonomy of Computer Program Security Flaws (context) - CE, AR et al. - 1994 ACM DBLP
28 Adaptive Real-time Anomaly Detection Using Inductively Gener.. (context) - HS, Lu et al. - 1990 DBLP
25 Artificial Intelligence and Intrusion Detection: Current and.. - Frank - 1994
22 Building Secure Software (context) - Viega, McGraw - 2001 ACM
21 A Prototype Real-Time Intrusion-Detection Expert System (context) - TF - 1988
16 Computer Security: Art and Science (context) - Bishop - 2003
12 Improving Computer Security using Extended Static Checking - BV - 2002 ACM DBLP
11 On Preventing Intrusions by Process Behavior Monitoring - Sekar, Bowen et al. - 1999 ACM DBLP
7 RaceGuard: Kernel Protection From Temporary File Race Vulner.. - Cowan, Beattie et al. - 2001
6 er Overflows: Attacks and Defenses for the Vulnerability of .. (context) - Cowan, Wagle et al. - 2000
2 Noninterference and Intrusion Detection (context) - Ko, Redmond - 2002 ACM DBLP
2 Redhat Security Advisory (context) - problems, lpr et al. - 1999
2 Man Pages: Rdist - remote file distribution program (context) - Microsystem - 1993
1 Linux kernel patch from the Openwall Project (context) - patch, Openwall et al. - 2003
1 orgfaqunix faqfaqpartsection (context) - get, scripts et al. - 2003
1 New results on the computability and complexity of points-to.. - VT - 2003
Documents on the same site (http://www.hpdc.syr.edu/~chapin/papers/allpub.html): More
Benchmarks and Standards for the Evaluation of.. - Chapin, Cirne.. (1999) (Correct)
A Flexible Security System for Metacomputing Environments - Ferrari, Knabe.. (1998) (Correct)
Distributed and Multiprocessor Scheduling - Chapin (1996) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC