Crispin Cowan, Calton Pu, Dave Maier, Heather Hinton, Jonathan Walpole, Peat ...  Home/Search
Context Related
| ogi.edu/DISC/proje...ard_usenix98.ps.gz immunix.org/StackGuard...usenixsc98.pdf ogi.edu/DISC/project...usenixsc98.ps.gz Cached: PS.gz PS PDF This document uses CoBlitz to cache paper downloads. If your firewall is blocking outgoing connections to port 3125, you can use these links to download local copies.
Image Update HelpPS.gz PS PDF From: ogi.edu/~crispin/.index (more) (Enter author homepages) |
Rate this article:      (best)Comment on this article |
Abstract: This paper presents a systematic solution to the persistent problem of buffer overflow attacks. Buffer overflow attacks gained notoriety in 1988 as part of the Morris Worm incident on the Internet. While it is fairly simple to fix individual buffer overflow vulnerabilities, buffer overflow attacks continue to this day. Hundreds of attacks have been discovered, and while most of the obvious vulnerabilities have now been patched, more sophisticated buffer overflow attacks continue to emerge. We... (Update)
Cited by: More
Using Labeling to Prevent Cross-Service Attacks against.. - Mulliner, Vigna, Dagon, .. (2006) (Correct)
Static Analysis and Computer Security: . . . - Wagner (2000) (Correct)
Enhancing Software Reliability With Speculative Threads - And The Committee (Correct)
Active bibliography (related documents): More All
0.9: Disarming Offense to Facilitate Defense - Bruschi, Rosti (2000) (Correct)
0.6: The Principle, Attack Patterns, and Defense Methods of Buffer.. - Hsu (2000) (Correct)
0.5: Specialization Tools and Techniques for Systematic .. - McNamee, Walpole, .. (2001) (Correct)
Similar documents based on text: More All
0.9: A Binary Rewriting Defense against Stack Based Overflow attacks - Prasad, Chiueh (Correct)
0.8: Architecture Support for Defending Against Buffer.. - Xu, Kalbarczyk, Patel.. (2002) (Correct)
0.7: Testing C Programs for Buffer Overflow Vulnerabilities - Haugh, Bishop (2003) (Correct)
Related documents from co-citation: More All
31: Smashing the stack for fun and profit (context) - One - 1996
28: Transparent run-time defense against stack smashing attacks - Baratloo, Tsai et al. - 2000
21: A Secure Environment for Untrusted Helper Applications --- Confining the Wily Ha.. - Goldberg, Wagner et al. - 1996
BibTeX entry: (Update)
C. Cowan, C. Pu, D. Maier, H. Hinton, J. Walpole, P. Bakke, S. Beattie, A. Grier, P. Wagle, and Q. Zhang. Stackguard: Automatic adaptive detection and prevention of buffer-overflow attacks. In Proceedings of the 7th USENIX Security Symposium, pages 63--78, San Antonio, TX, January 1998. http://citeseer.ist.psu.edu/cowan98stackguard.html More
@inproceedings = { cowanstackguard,
author = "Crispan Cowan and Calton Pu and Dave Maier and Jonathan Walpole and Peat Bakke and Steve Beattie and Aaron Grier and Perry Wagle and Qian Zhang and Heather Hinton",
title = "{StackGuard}: Automatic Adaptive Detection and Prevention of Buffer-Overflow Attacks",
booktitle="Proc. 7th USENIX Security Conference",
pages = "63--78",
year = "1998",
month = "jan",
address="San Antonio, Texas",
url = "citeseer.ist.psu.edu/cowan98stackguard.html",
url = "citeseer.nj.nec.com/cowan98stackguard.html" }
Citations (may not include all citations):136 Java Security: From HotJava to Netscape and Beyond - Dean, Felten et al. - 1996
111 Optimistic Incremental Specialization: Streamlining a Commer.. - Pu, Autrey et al. - 1995
98 Purify: Fast Detection of Memory Leaks and Access Errors (context) - Hastings, Joyce - 1992
66 Smashing The Stack For Fun And Profit (context) - One - 1996
53 The Internet Worm Program: Analysis - Spafford - 1989
49 An Empirical Study of the Reliability of UNIX Utilities - Miller, Fredrikson et al. - 1990
46 The COPS Security Checker System - Farmer - 1990
45 Building Diverse Computer Systems - Forrest, Somayaji et al. - 1997
43 Fuzz Revisited: A reexamination of the Reliability of UNIX U.. - Miller, Koski et al. - 1995
38 Declarative Specialization of Object-Oriented Programs - Volanschi, Consel et al. - 1997
27 Fast Concurrent Dynamic Linking for an Adaptive Operating Sy.. - Cowan, Autrey et al. - 1996
19 Stack Smashing vulnerabilities in the UNIX Operating System (context) - Smith - 1997
16 Microlanguages for Operating System Specialization - Pu, Black et al. - 1997
6 Specialization Classes: An Object Framework for Specializati.. - Cowan, Black et al. - 1996
6 Non-Executable User Stack (context) - Designer
5 Bounds Checking for C (context) - Jones, Kelly - 1995
4 Curmudgeon's Executive Summary (context) - Crabb - 1997
3 Bugtraq Mailing List (context) - One
2 FreeBSD Stack Integrity Patch (context) - Snarskii - 1997
2 A Toolkit for Specializing Production Operating System Code - Cowan, McNamee et al. - 1997
1 Penetration Analysis Tools (context) - Gligor, Gavrila et al. - 1997
1 Panel: Security of Downloadable Executable Content (context) - Roskind - 1997
The graph only includes citing articles where the year of publication is known.
Documents on the same site (http://www-internal.cse.ogi.edu/~crispin/.index.html): More
Performance Benefits of Optimistic Programming: A Measure of .. - Cowan, Lutfiyya, Bauer (1995) (Correct)
Optimistic Incremental Specialization.. - Pu, Autrey.. (1995) (Correct)
Language Support for the Application-Oriented Fault Tolerance .. - Lutfiyya, Cowan (1995) (Correct)
Online articles have much greater impact More about CiteSeer.IST Add search form to your site Submit documents Feedback
CiteSeer.IST - Copyright Penn State and NEC