참고문헌 (48)

1. Smalley S , Vance C , Salamon W . Implementing SELinux as a Linux Security Module . 2006 . https://www.nsa.gov/resources/everyone/digital-media-center/publications/research-papers/assets/files/implementing-selinux-as-linux-security-module-report.pdf 

2. Bauer M . Paranoid penguin: an introduction to Novell AppArmor . Linux J . 2006 ; 2006 ( 148 ): 13 . 

3. Integrity Measurement Architecture (IMA) wiki pages. 2017 . http://sourceforge.net/p/linux-ima/wiki/Home/ 

4. Implementing dm‐verity . 2017 . http://source.android.com/security/verifiedboot/dm-verity 

5. National Vulnerability Database: Statistics for kernel vulnerabilities . 2017 . https://nvd.nist.gov/vuln/search/statistics?adv_search=true&form_type=advanced∓results_type=statistics&query=kernel 

6. Cook K . Status of the Kernel Self Protection Project . 2016 . www.outflux.net/slides/2016/lss/kspp.pdf 

7. Kernel Self Protection Project wiki. 2017 . http://www.kernsec.org/wiki/index.php/Kernel_Self_Protection_Project 

8. Raheja S , Munjal G , Shagun . Analysis of Linux kernel vulnerabilities . Indian J Sci Technol . 2016 ; 9 ( 48 ). 

9. Chen H , Mao Y , Wang X , Zhou D , Zeldovich N , Kaashoek MF . Linux kernel vulnerabilities: state‐of‐the‐art defenses and open problems . In: Proceedings of the Second Asia‐Pacific Workshop on Systems (APSys); 2011 ; Shanghai, China . 

10. Collins GE . A method for overlapping and erasure of lists . Commun ACM . 1960 ; 3 ( 12 ): 655 ‐ 657 . 

11. McKenney PE . Overview of Linux‐kernel reference counting . Technical Report n2167=07‐0027. Beaverton, OR : IBM Linux Technology Center ; 2007 . 

12. Nagarakatte S , Zhao J , Martin MMK , Zdancewic S . Softbound: highly compatible and complete spatial memory safety for C . In: Proceedings of the 30th ACM SIGPLAN Conference on Programming Language Design and Implementation; 2009 ; Dublin, Ireland . 

13. Moreira J , Rigo S , Polychronakis M , Kemerlis V . DROP THE ROP: Fine‐grained Control‐flow Integrity for the Linux Kernel . 2017 . https://www.blackhat.com/docs/asia-17/materials/asia-17-Moreira-Drop-The-Rop-Fine-Grained-Control-Flow-Integrity-For-The-Linux-Kernel-wp.pdf 

14. Song C , Lee B , Lu K , Harris W , Kim T , Lee W . Enforcing kernel security invariants with data flow integrity . Paper presented: 23rd Annual Network Annual Network and Distributed System Security Symposium (NDSS); San Diego, CA . 2016 . 

15. The Kernel Address Sanitizer (KASAN) . 2017 . www.kernel.org/doc/html/v4.10/dev-tools/kasan.html 

16. Nikolenko V . Exploiting COF Vulnerabilities in the Linux kernel . 2016 . ruxcon.org.au/assets/2016/slides/ruxcon2016-Vitaly.pdf 

17. Ramakesavan R , Zimmerman D , Singaravelu P . Intel Memory Protection Extensions (Intel MPX) Enabling Guide . 2015 . http://caxapa.ru/thumbs/808589/4878c6471cb5ae28546a594bf25ba5c25c6f.pdf 

18. Hastings R , Joyce B . Purify: fast detection of memory leaks and access errors . In: Proceedings of the Winter 1992 USENIX Conference; 1991 ; Berkeley, CA . 

19. Patil H , Fischer CN . Efficient run‐time monitoring using shadow processing . In: Proceedings of the Second International Workshop on Automated Debugging (AADEBUG); 1995 ; Saint Malo, France . 

20. Patil H , Fischer C . Low‐cost, concurrent checking of pointer and array accesses in C programs . Softw Pract Exper . 1997 ; 27 ( 1 ): 87 ‐ 110 . 

21. Jones RWM , Kelly PHJ . Backwards‐compatible bounds checking for arrays and pointers in C programs . In: Proceedings of the Third International Workshop on Automated Debugging (AADEBUG); 1997 ; Linköping, Sweden . 

22. Yong SH , Horwitz S . Protecting C programs from attacks via invalid pointer dereferences . ACM SIGSOFT Softw Eng Notes . 2003 ; 28 ( 5 ): 307 ‐ 316 . 

23. Xu W , DuVarney DC , Sekar R . An efficient and backwards‐compatible transformation to ensure memory safety of C programs . SIGSOFT Softw Eng Notes . 2004 ; 29 ( 6 ): 117 ‐ 126 . 

24. Nethercote N , Fitzhardinge J . Bounds‐checking entire programs without recompiling . In: Proceedings of the Second Workshop on Semantics Program Analysis and Computing Environments for Memory Management (SPACE); 2004 ; Venice, Italy . 

25. Dhurjati D , Adve V . Backwards‐compatible array bounds checking for C with very low overhead . In: Proceedings of the 28th International Conference on Software Engineering; 2006 ; Shanghai, China . 

26. Necula GC , McPeak S , Weimer W . CCured: type‐safe retrofitting of legacy code . ACM SIGPLAN Notices . 2002 ; 37 ( 1 ): 128 ‐ 139 . 

    상세보기

27. Grossman D , Hicks M , Jim T , Morrisett G . Cyclone: a type‐safe dialect of C . C/C++ Users J . 2005 ; 23 ( 1 ): 112 ‐ 139 . 

28. PaX address space layout randomization (ASLR) . 2003 . http://pax.grsecurity.net/docs/aslr.txt 

29. Branco R . Grsecurity forum — Guest Blog by Rodrigo Branco: PAX_REFCOUNT Documentation . 2015 . https://forums.grsecurity.net/viewtopic.php?f=7Zt=4173 

30. Nethercote N , Seward J . Valgrind: a framework for heavyweight dynamic binary instrumentation . In: Proceedings of the 28th ACM SIGPLAN Conference on Programming Language Design and Implementation; 2007 ; San Diego, CA . 

31. Serebryany K , Bruening D , Potapenko A , Vyukov D . AddressSanitizer: a fast address sanity checker . In: USENIX Annual Technical Conference; 2012 ; Boston, MA . 

32. Solar Designer . Linux kernel patch to remove stack exec permission . 1997 . http://seclists.org/bugtraq/1997/Apr/31 

33. Pax non‐executable pages design & implementation . 2003 . http://pax.grsecurity.net 

34. Krahmer S . X86‐64 buffer overflow exploits and the borrowed code chunks exploitation technique . 2005 . https://trailofbits.github.io/ctf/exploits/references/no-nx.pdf 

35. Cowan C , Pu C , Maier D , et al. StackGuard: automatic adaptive detection and prevention of buffer‐overflow attacks . In: Proceedings of the 7th USENIX Security Symposium; 1998 ; San Antonio, TX . 

36. A stack smashing technique protection tool for Linux . 2011 . http://www.angelfire.com/sk/stackshield 

37. Xu J , Kalbarczyk Z , Iyer RK . Transparent runtime randomization for security . Paper presented at: 22nd Symposium on Reliable Distributed Systems (SRDS); 2003 ; Florence, Italy . 

38. Ratanaworabhan P , Livshits B , Zorn B . NOZZLE: a defense against heap‐spraying code injection attacks . Paper presented at: 18th USENIX Security Symposium; 2009 ; San Jose, CA . 

39. Kwon A , Dhawan U , Smith J , Knight Jr TF , DeHon A . Low‐fat pointers: compact encoding and efficient gate‐level implementation of fat pointers for spatial safety and capability‐based security . In: Proceedings of the 2013 ACM SIGSAC Conference on Computer & Communications Security (CCS); 2013 ; Berlin, Germany . 

40. Kuvaiskii D , Oleksenko O , Arnautov S , et al. SGXBOUNDS: memory safety for shielded execution . In: Proceedings of the Twelfth European Conference on Computer Systems (EuroSys); 2017 ; Belgrade, Serbia . 

41. Devietti J , Blundell C , Martin MMK , Zdancewic S . Hardbound: architectural support for spatial safety of the C programming language . ACM SIGARCH Comput Archit News . 2008 ; 36 ( 1 ): 103 ‐ 114 . 

42. Coccinelle Project . 2017 . http://coccinelle.lip6.fr/ 

43. Pike JP . Server CPU Predictions For 2017 . 2017 . https://www.forbes.com/sites/moorinsights/2017/01/10/server-cpu-predictions-for-2017/27adb50365a7 

44. Akritidis P , Costa M , Castro M , Hand S . Baggy bounds checking: an efficient and backwards‐compatible defense against out‐of‐bounds errors . Paper presented at: 18th USENIX Security Symposium; 2009 ; San Jose, CA . 

45. Netperf Project . 2017 . http://hewlettpackard.github.io/netperf 

46. Grsecurity Project . 2017 . https://grsecurity.net 

47. Submitting patches: the essential guide to getting your code into the kernel . 2017 . https://www.kernel.org/doc/html/v4.12/process/submitting-patches.html 

48. Cook K . codeblog: security things in Linux v4.13 . 2017 . https://outflux.net/blog/archives/2017/09/05/security-things-in-linux-v4-13/ 

활용도 Top5 논문

더보기

해당 논문의 주제분야에서 활용도가 높은 상위 5개 콘텐츠를 보여줍니다.
더보기 버튼을 클릭하시면 더 많은 관련자료를 살펴볼 수 있습니다.