WIS-SEC-BOF/work/bibliography.bib
Valentin Brandl cb948467bf
Formatting
2019-12-15 13:01:42 +01:00

187 lines
5.7 KiB
BibTeX

own:
@inproceedings{TypeAssisted2002,
author = {{{Lhee}, Kyung-suk and {Chapin}, Steve J.}},
booktitle = {{11\textsuperscript{th} USENIX Security Symposium}},
% no conference abbreviation
title = {{Type-Assisted Dynamic Buffer Overflow Detection}},
year = {2002}
}
@inproceedings{Rop2007,
author = {{Shacham}, Hovav},
booktitle = {{Proceedings of the 14th ACM conference on Computer and
communications security (CCS)}},
title = {{The Geometry of Innocent Flesh on the Bone: Return-into-libc without
Function Calls (on the x86)}},
year = {2007}
}
@inproceedings{Detection2018,
author = {{{Chaim}, Marcos and {Santos}, Daniel and {Cruzes}, Daniela}},
booktitle = {{International Journal of Systems and Software Security and
Protection (IJSSSP)}},
title = {{What Do We Know About Buffer Overflow Detection?: A Survey on
Techniques to Detect A Persistent Vulnerability}},
year = {2018}
}
@inproceedings{AtkDef2016,
author = {{{Wang}, Wei}},
booktitle = {{7\textsuperscript{th} International Conference on Education,
Management, Information and Computer Science (ICEMC 2017)}},
title = {{Survey of Attacks and Defenses on Stack-based Buffer Overflow
Vulnerability}},
year = {2017}
}
@INPROCEEDINGS{Effectiveness2014,
author={{{Gisbert}, H. M. and {Ripoll}, I.}},
booktitle={{IEEE 13\textsuperscript{th} International Symposium on Network
Computing and Applications (ISNCA)}},
title={{On the Effectiveness of NX, SSP, RenewSSP, and ASLR against Stack Buffer
Overflows}},
year={2014},
}
@inproceedings{Rad2001,
author = {{{Chiueh}, Tzi-cker and {Hsu}, Fu-Hau}},
booktitle = {{21\textsuperscript{st} International Conference on Distributed
Computing Systems}},
title = {{RAD: A Compile-Time Solution to Buffer Overflow Attacks}},
year = {2001}
}
@inproceedings{Stackguard1998,
author = {{{Cowan}, Crispan and {Po}, Calton and {Maier}, Dave and {Walpole},
Jonathan and {Bakke}, Peat and {Beattie}, Steve and {Grier}, Aaron and
{Wagle}, Perru and {Yhang}, Qian}},
booktitle = {{7\textsuperscript{th} USENIX Security Symposium}},
title = {{StackGuard: Automatic Adaptive Detection and Prevention of
Buffer-Overflow Attacks}},
year = {1998}
}
@inproceedings{AslrEffective2004,
year = {2004},
booktitle = {{11\textsuperscript{th} ACM conference on Computer and
communications security (CCS)}},
title = {{On the Effectiveness of Address-Space Randomization}},
author = {{{Shacham}, Hovav and {Page}, Matthew and {Pfaff}, Ben and {Goh},
Eu-Jin and {Modadugu}, Nagendra and {Boneh}, Dan}}
}
@ARTICLE{Smashing2004,
author={{Pincus}, J. and {Baker}, B.},
journal={{IEEE Security \& Privacy}},
title={{Beyond stack smashing: recent advances in exploiting buffer
overruns}},
year={2004},
volume={2},
number={4},
}
@article{Counter2012,
author = {{{Younan}, Yves and {Joosen}, Wouter and {Piessens}, Frank}},
title = {{Runtime countermeasures for code injection attacks against C and C++
programs}},
year={2012},
journal = {{ACM Computing Surveys (CSUR)}},
volume = {44},
number = {3},
}
@InProceedings{Dep2007,
author={{{Condit}, Jeremy and {Harren}, Matthew and {Anderson}, Zachary and
{Gay}, David and {Necula}, George C.}},
title={{Dependent Types for Low-Level Programming}},
booktitle={{Programming Languages and Systems}},
year={2007}
}
@ONLINE{Cve2018,
author={{MITRE}},
title={{Security Vulnerabilities Published In 2018(Overflow)}},
urlDate = {2019-11-10},
year = {2018},
url={https://www.cvedetails.com/vulnerability-list/year-2018/opov-1/overflow.html}
}
@online{FBSDaslr,
url = {https://svnweb.freebsd.org/base?view=revision\&revision=r343964},
year = {2019},
urlDate = {2019-12-10},
title = {{Implement Address Space Layout Randomization (ASLR)}},
author = {{{Belousov}, Konstantin}}
}
@online{Linuxaslr,
url = {https://lwn.net/Articles/569635/},
year = {2013},
urlDate = {2019-12-10},
title = {{Kernel address space layout randomization}},
author = {{{Edge}, Jake}}
}
existing:
@article{Laprie2004,
author = {Avizienis, Algirdas and Laprie, Jean-Claude and Randell, Brian and Landwehr, Carl},
journal = {IEEE Transactions on Dependable and Secure Computing},
title = {{Basic Concepts and Taxonomy of Dependable and Secure Computing}},
year = {2004}
}
@inproceedings{Agrou2011,
author = {Agrou, Hicham and Sainrat, Pascal and Gatti, Marc and Faura, David and Toillon, Patrice},
booktitle = {Digital Avionics Systems Conference (DASC)},
title = {{A Design Approach for Predictable and Efficient Multi-Core Processor for Avionics}},
year = {2011}
}
@misc{Grisenthwaite2012,
author = {Grisenthwaite, Richard Roy and Jebson, Anthony and Rose, Andrew Christopher and Evans, Matthew Lucien},
institution = {ARM},
title = {{Communication of Message Signalled Interrupts (US20140122760)}},
url = {http://www.google.com/patents/US20140122760},
year = {2012}
}
@misc{ARINC2005,
author = {ARINC},
title = {{ARINC Specification 664P7 - Aircraft Data Network Part 7 Avionics Full Duplex Switched Ethernet (AFDX) Network}},
year = {2005}
}
@book{Kopetz2011,
address = {New York},
author = {Kopetz, Hermann},
publisher = {Springer},
title = {{Real Time Systems}},
year = {2011}
}
@misc{Freescale2015,
author = {Freescale},
title = {{QorIQ LS2045A and LS2085A Communications Processors (Rev. 2)}},
year = {2015}
}
@techreport{Aswadhati2011,
author = {Aswadhati, Ajoy},
institution = {PCI-SIG},
title = {{Scaling Data Center Interconnects with PCI Express}},
url = {http://www.pcisig.com/developers/main/training\_materials/get\_document?doc\_id=415a477bf2725a554d7903f9d8d499daa3e8e4bb},
year = {2011}
}
@ONLINE{Xil2010,
author={Xilinx},
title={{System Generator works very slow. Why?}},
year = {2010},
url={http://forums.xilinx.com/t5/DSP-Tools/System-Generator-works-very-slow-Why/td-p/21140/page/2
}}