ARMORY: An automatic security testing tool for buffer overflow defect detection

Li Han Chen, Fu Hau Hsu, Yanling Hwang, Mu Chun Su, Wei Shinn Ku, Chi Hsuan Chang

Research output: Contribution to journalArticlepeer-review

8 Scopus citations

Abstract

Program Buffer Overflow Defects (PBODs) are the stepping stones of Buffer Overflow Attacks (BOAs), which are one of the most dangerous security threats to the Internet. In: this paper, we propose a kernel-based security testing tool, named ARMORY, for software engineers to detect PBODs automatically when they apply all kinds of testing, especially functional testing and unit testing, without increasing the testing workload. Besides, ARMORY does not need any attack instance, any training phase, or source code to finish its security testing. ARMORY can detect unknown PBODs. ARMORY not only can improve software quality, but also can reduce the amount of system resources used to protect a system. We implemented ARMORY in Linux kernel by modifying sys-read() system call and entry. S which deals all system call. Experimental results show that ARMORY can automatically detect PBODs when programmers test the functionality of their programs.

Original languageEnglish
Pages (from-to)2233-2242
Number of pages10
JournalComputers and Electrical Engineering
Volume39
Issue number7
DOIs
StatePublished - Oct 2013

Fingerprint

Dive into the research topics of 'ARMORY: An automatic security testing tool for buffer overflow defect detection'. Together they form a unique fingerprint.

Cite this