Fixing Races for Fun and Profit: How to use access(2) (2004)

by Drew Dean , Alan J. Hu
Venue:IN 13TH USENIX SECURITY SYMPOSIUM
Citations:20 - 0 self

Active Bibliography

Portably Solving File . . . – Dan Tsafrir, TOMER HERTZ, David Wagner, Dilma Da Silva - 2008
11 Portably solving file TOCTTOU races with hardness amplification – Dan Tsafrir, Tomer Hertz, David Wagner, Dilma Da Silva - 2008
2 STING: Finding Name Resolution Vulnerabilities in Programs – Hayawardh Vijayakumar, Joshua Schiffman, Trent Jaeger
17 Fixing races for fun and profit: how to abuse atime – Nikita Borisov, Rob Johnson, Naveen Sastry, David Wagner - 2005
Integrity Checking For Process Hardening – Kyung-suk Lhee - 2005
2 IMPROVING SOFTWARE ASSURANCE USING LIGHTWEIGHT STATIC Analysis – Rajeev Gopalakrishna - 2006
25 SmashGuard: A Hardware Solution to Prevent Security Attacks on the Function Return Address – T. N. Vijaykumar, C. E. Brodley, B. A. Kuperman, A. Jalote - 2003
8 SELF: a transparent security extension for ELF binaries – Daniel C. Duvarney - 2003
73 Ostia: A Delegating Architecture for Secure System Call Interposition – Tal Garfinkel , Ben Pfaff, Mendel Rosenblum - 2003
Process Firewalls: Protecting Processes During Resource Access – Hayawardh Vijayakumar, Joshua Schiffman, Trent Jaeger
Due to their non-deterministic nature, Time of Check – Jinpeng Wei, Calton Pu
1 Protecting Applications Against TOCTTOU Races by User-Space Caching of File Metadata – Mathias Payer, Thomas R. Gross
32 Operating System Transactions – Donald E. Porter, Indrajit Roy, Andrew Matsuoka, Emmett Witchel - 2008
14 Exploiting unix file-system races via algorithmic complexity attacks – Xiang Cai, Yuwei Gui, Rob Johnson - 2009
Implementing A Secure Setuid Program – Takahiro Shinagawa, Kenji Kono - 2004
10 A Model of Forensic Analysis Using Goal-Oriented Logging – Sean Philip Peisert - 2007
Extending Mondrian Memory Protection – Clemens Kolbitsch, Christopher Kruegel, Engin Kirda
2 A Role-Based Approach to Restricting Application Execution – Zeon Cliffe Schreuders, Supervisors Christian Payne, Peter Cole, Cliffe Schreuders
1 String Oriented Programming Circumventing ASLR, DEP, and Other Guards – Mathias Payer