2019-10-21 16:44:53 +02:00
|
|
|
own:
|
|
|
|
|
|
|
|
@inproceedings{TypeAssisted2002,
|
2019-12-15 13:01:42 +01:00
|
|
|
author = {{{Lhee}, Kyung-suk and {Chapin}, Steve J.}},
|
2019-12-09 13:04:39 +01:00
|
|
|
booktitle = {{11\textsuperscript{th} USENIX Security Symposium}},
|
|
|
|
% no conference abbreviation
|
2019-10-21 16:44:53 +02:00
|
|
|
title = {{Type-Assisted Dynamic Buffer Overflow Detection}},
|
|
|
|
year = {2002}
|
|
|
|
}
|
|
|
|
|
2019-12-11 20:21:10 +01:00
|
|
|
@inproceedings{Rop2007,
|
2019-12-15 13:01:42 +01:00
|
|
|
author = {{Shacham}, Hovav},
|
|
|
|
booktitle = {{Proceedings of the 14th ACM conference on Computer and
|
|
|
|
communications security (CCS)}},
|
|
|
|
title = {{The Geometry of Innocent Flesh on the Bone: Return-into-libc without
|
|
|
|
Function Calls (on the x86)}},
|
2019-12-11 20:21:10 +01:00
|
|
|
year = {2007}
|
|
|
|
}
|
|
|
|
|
2019-11-20 20:03:22 +01:00
|
|
|
@inproceedings{Detection2018,
|
2019-12-15 13:01:42 +01:00
|
|
|
author = {{{Chaim}, Marcos and {Santos}, Daniel and {Cruzes}, Daniela}},
|
|
|
|
booktitle = {{International Journal of Systems and Software Security and
|
|
|
|
Protection (IJSSSP)}},
|
|
|
|
title = {{What Do We Know About Buffer Overflow Detection?: A Survey on
|
|
|
|
Techniques to Detect A Persistent Vulnerability}},
|
2019-11-20 20:03:22 +01:00
|
|
|
year = {2018}
|
|
|
|
}
|
|
|
|
|
|
|
|
@inproceedings{AtkDef2016,
|
2019-12-15 13:01:42 +01:00
|
|
|
author = {{{Wang}, Wei}},
|
|
|
|
booktitle = {{7\textsuperscript{th} International Conference on Education,
|
|
|
|
Management, Information and Computer Science (ICEMC 2017)}},
|
|
|
|
title = {{Survey of Attacks and Defenses on Stack-based Buffer Overflow
|
|
|
|
Vulnerability}},
|
2019-11-20 20:03:22 +01:00
|
|
|
year = {2017}
|
|
|
|
}
|
|
|
|
|
2019-11-19 21:18:38 +01:00
|
|
|
@INPROCEEDINGS{Effectiveness2014,
|
2019-12-15 13:01:42 +01:00
|
|
|
author={{{Gisbert}, H. M. and {Ripoll}, I.}},
|
|
|
|
booktitle={{IEEE 13\textsuperscript{th} International Symposium on Network
|
|
|
|
Computing and Applications (ISNCA)}},
|
|
|
|
title={{On the Effectiveness of NX, SSP, RenewSSP, and ASLR against Stack Buffer
|
|
|
|
Overflows}},
|
2019-11-19 21:18:38 +01:00
|
|
|
year={2014},
|
|
|
|
}
|
|
|
|
|
2019-10-21 15:40:47 +02:00
|
|
|
@inproceedings{Rad2001,
|
2019-12-15 13:01:42 +01:00
|
|
|
author = {{{Chiueh}, Tzi-cker and {Hsu}, Fu-Hau}},
|
|
|
|
booktitle = {{21\textsuperscript{st} International Conference on Distributed
|
|
|
|
Computing Systems}},
|
2019-10-21 15:40:47 +02:00
|
|
|
title = {{RAD: A Compile-Time Solution to Buffer Overflow Attacks}},
|
|
|
|
year = {2001}
|
|
|
|
}
|
|
|
|
|
2019-10-21 16:44:53 +02:00
|
|
|
@inproceedings{Stackguard1998,
|
2019-12-15 13:01:42 +01:00
|
|
|
author = {{{Cowan}, Crispan and {Po}, Calton and {Maier}, Dave and {Walpole},
|
|
|
|
Jonathan and {Bakke}, Peat and {Beattie}, Steve and {Grier}, Aaron and
|
|
|
|
{Wagle}, Perru and {Yhang}, Qian}},
|
2019-12-09 13:04:39 +01:00
|
|
|
booktitle = {{7\textsuperscript{th} USENIX Security Symposium}},
|
2019-10-21 16:44:53 +02:00
|
|
|
title = {{StackGuard: Automatic Adaptive Detection and Prevention of
|
|
|
|
Buffer-Overflow Attacks}},
|
|
|
|
year = {1998}
|
|
|
|
}
|
|
|
|
|
2019-12-11 20:21:10 +01:00
|
|
|
@inproceedings{AslrEffective2004,
|
|
|
|
year = {2004},
|
2019-12-15 13:01:42 +01:00
|
|
|
booktitle = {{11\textsuperscript{th} ACM conference on Computer and
|
|
|
|
communications security (CCS)}},
|
2019-12-11 20:21:10 +01:00
|
|
|
title = {{On the Effectiveness of Address-Space Randomization}},
|
2019-12-15 13:01:42 +01:00
|
|
|
author = {{{Shacham}, Hovav and {Page}, Matthew and {Pfaff}, Ben and {Goh},
|
|
|
|
Eu-Jin and {Modadugu}, Nagendra and {Boneh}, Dan}}
|
2019-12-11 20:21:10 +01:00
|
|
|
}
|
|
|
|
|
2019-11-20 20:03:22 +01:00
|
|
|
@ARTICLE{Smashing2004,
|
2019-12-15 13:01:42 +01:00
|
|
|
author={{Pincus}, J. and {Baker}, B.},
|
2019-12-16 17:56:17 +01:00
|
|
|
journal={{IEEE Security and Privacy (SP)}},
|
2019-12-15 13:01:42 +01:00
|
|
|
title={{Beyond stack smashing: recent advances in exploiting buffer
|
|
|
|
overruns}},
|
2019-11-20 20:03:22 +01:00
|
|
|
year={2004},
|
|
|
|
volume={2},
|
|
|
|
number={4},
|
|
|
|
}
|
|
|
|
|
2019-12-16 11:33:48 +01:00
|
|
|
@techreport{Gcc2003,
|
|
|
|
author = {{Wagle}, Perry and {Cowan}, Crispin},
|
|
|
|
institution = {{Immunix, Inc.}},
|
|
|
|
title = {{StackGuard: Simple Stack Smash Protection for GCC}},
|
|
|
|
url = {ftp://gcc.gnu.org/pub/gcc/summit/2003/Stackguard.pdf},
|
|
|
|
year = {2003},
|
|
|
|
urlDate = {2019-12-15}
|
|
|
|
}
|
|
|
|
|
2019-11-20 20:03:22 +01:00
|
|
|
@article{Counter2012,
|
2019-12-15 13:01:42 +01:00
|
|
|
author = {{{Younan}, Yves and {Joosen}, Wouter and {Piessens}, Frank}},
|
|
|
|
title = {{Runtime countermeasures for code injection attacks against C and C++
|
|
|
|
programs}},
|
2019-11-20 20:03:22 +01:00
|
|
|
year={2012},
|
2019-12-09 13:04:39 +01:00
|
|
|
journal = {{ACM Computing Surveys (CSUR)}},
|
2019-11-20 20:03:22 +01:00
|
|
|
volume = {44},
|
|
|
|
number = {3},
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2019-10-21 16:44:53 +02:00
|
|
|
@InProceedings{Dep2007,
|
2019-12-15 13:01:42 +01:00
|
|
|
author={{{Condit}, Jeremy and {Harren}, Matthew and {Anderson}, Zachary and
|
|
|
|
{Gay}, David and {Necula}, George C.}},
|
2019-12-09 13:04:39 +01:00
|
|
|
title={{Dependent Types for Low-Level Programming}},
|
|
|
|
booktitle={{Programming Languages and Systems}},
|
2019-11-19 21:18:38 +01:00
|
|
|
year={2007}
|
2019-10-21 16:44:53 +02:00
|
|
|
}
|
|
|
|
|
2019-11-20 20:03:22 +01:00
|
|
|
@ONLINE{Cve2018,
|
2019-12-09 13:04:39 +01:00
|
|
|
author={{MITRE}},
|
2019-11-20 20:03:22 +01:00
|
|
|
title={{Security Vulnerabilities Published In 2018(Overflow)}},
|
|
|
|
urlDate = {2019-11-10},
|
|
|
|
year = {2018},
|
|
|
|
url={https://www.cvedetails.com/vulnerability-list/year-2018/opov-1/overflow.html}
|
|
|
|
}
|
|
|
|
|
2019-12-16 11:33:48 +01:00
|
|
|
@online{ArchPie2017,
|
|
|
|
url =
|
|
|
|
{https://git.archlinux.org/svntogit/packages.git/commit/trunk?h=packages/gcc&id=5936710c764016ce306f9cb975056e5b7605a65b},
|
|
|
|
urlDate = {2019-12-15},
|
|
|
|
year = {2017},
|
|
|
|
author = {{Bartłomiej Piotrowski}},
|
|
|
|
title = {{7.1.1-4: enable SSP and PIE by default}}
|
|
|
|
}
|
|
|
|
|
2019-12-16 17:56:17 +01:00
|
|
|
@online{Heardbleed2014,
|
|
|
|
url = {http://heartbleed.com/},
|
|
|
|
urlDate = {2019-12-15},
|
|
|
|
year = {2014},
|
|
|
|
title = {{The Heartbleed Bug}},
|
|
|
|
author = {{Codenomicon}},
|
|
|
|
}
|
|
|
|
|
|
|
|
@online{Checksec2019,
|
|
|
|
url = {https://github.com/slimm609/checksec.sh},
|
|
|
|
urlDate = {2019-12-16},
|
|
|
|
year = {2019},
|
|
|
|
title = {{Checksec.sh}},
|
|
|
|
author = {{Klein}, Tobias}
|
|
|
|
}
|
|
|
|
|
2019-12-16 11:33:48 +01:00
|
|
|
@online{Tiobe2019,
|
|
|
|
author = {{TIOBE}},
|
|
|
|
title = {{TIOBE Index for December 2019}},
|
|
|
|
urlDate = {2019-12-15},
|
|
|
|
year = {2019},
|
|
|
|
url = {https://www.tiobe.com/tiobe-index/}
|
|
|
|
}
|
|
|
|
|
2019-12-10 19:10:15 +01:00
|
|
|
@online{FBSDaslr,
|
|
|
|
url = {https://svnweb.freebsd.org/base?view=revision\&revision=r343964},
|
|
|
|
year = {2019},
|
|
|
|
urlDate = {2019-12-10},
|
|
|
|
title = {{Implement Address Space Layout Randomization (ASLR)}},
|
2019-12-15 13:01:42 +01:00
|
|
|
author = {{{Belousov}, Konstantin}}
|
2019-12-10 19:10:15 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
@online{Linuxaslr,
|
|
|
|
url = {https://lwn.net/Articles/569635/},
|
|
|
|
year = {2013},
|
|
|
|
urlDate = {2019-12-10},
|
|
|
|
title = {{Kernel address space layout randomization}},
|
2019-12-15 13:01:42 +01:00
|
|
|
author = {{{Edge}, Jake}}
|
2019-12-10 19:10:15 +01:00
|
|
|
}
|
|
|
|
|
2019-10-21 16:44:53 +02:00
|
|
|
existing:
|
|
|
|
|
2019-10-21 15:40:47 +02:00
|
|
|
@article{Laprie2004,
|
|
|
|
author = {Avizienis, Algirdas and Laprie, Jean-Claude and Randell, Brian and Landwehr, Carl},
|
|
|
|
journal = {IEEE Transactions on Dependable and Secure Computing},
|
|
|
|
title = {{Basic Concepts and Taxonomy of Dependable and Secure Computing}},
|
|
|
|
year = {2004}
|
|
|
|
}
|
|
|
|
|
|
|
|
@inproceedings{Agrou2011,
|
|
|
|
author = {Agrou, Hicham and Sainrat, Pascal and Gatti, Marc and Faura, David and Toillon, Patrice},
|
|
|
|
booktitle = {Digital Avionics Systems Conference (DASC)},
|
|
|
|
title = {{A Design Approach for Predictable and Efficient Multi-Core Processor for Avionics}},
|
|
|
|
year = {2011}
|
|
|
|
}
|
|
|
|
|
|
|
|
@misc{Grisenthwaite2012,
|
|
|
|
author = {Grisenthwaite, Richard Roy and Jebson, Anthony and Rose, Andrew Christopher and Evans, Matthew Lucien},
|
|
|
|
institution = {ARM},
|
|
|
|
title = {{Communication of Message Signalled Interrupts (US20140122760)}},
|
|
|
|
url = {http://www.google.com/patents/US20140122760},
|
|
|
|
year = {2012}
|
|
|
|
}
|
|
|
|
|
|
|
|
@misc{ARINC2005,
|
|
|
|
author = {ARINC},
|
|
|
|
title = {{ARINC Specification 664P7 - Aircraft Data Network Part 7 Avionics Full Duplex Switched Ethernet (AFDX) Network}},
|
|
|
|
year = {2005}
|
|
|
|
}
|
|
|
|
|
|
|
|
@book{Kopetz2011,
|
|
|
|
address = {New York},
|
|
|
|
author = {Kopetz, Hermann},
|
|
|
|
publisher = {Springer},
|
|
|
|
title = {{Real Time Systems}},
|
|
|
|
year = {2011}
|
|
|
|
}
|
|
|
|
|
|
|
|
@misc{Freescale2015,
|
|
|
|
author = {Freescale},
|
|
|
|
title = {{QorIQ LS2045A and LS2085A Communications Processors (Rev. 2)}},
|
|
|
|
year = {2015}
|
|
|
|
}
|
|
|
|
|
|
|
|
@techreport{Aswadhati2011,
|
|
|
|
author = {Aswadhati, Ajoy},
|
|
|
|
institution = {PCI-SIG},
|
|
|
|
title = {{Scaling Data Center Interconnects with PCI Express}},
|
|
|
|
url = {http://www.pcisig.com/developers/main/training\_materials/get\_document?doc\_id=415a477bf2725a554d7903f9d8d499daa3e8e4bb},
|
|
|
|
year = {2011}
|
|
|
|
}
|
|
|
|
|
|
|
|
@ONLINE{Xil2010,
|
|
|
|
author={Xilinx},
|
|
|
|
title={{System Generator works very slow. Why?}},
|
|
|
|
year = {2010},
|
|
|
|
url={http://forums.xilinx.com/t5/DSP-Tools/System-Generator-works-very-slow-Why/td-p/21140/page/2
|
|
|
|
}}
|
|
|
|
|
|
|
|
|