System And Method For Preventing Race Condition Vulnerability

View/Open

8127413.pdf (1.007Mb)

Date

3/6/2012

Author

Pu, Calton

Wei, Jinpeng

Metadata

Show full item record

Abstract

A method for identifying vulnerable system call pairs is disclosed. The method is based on a model for identifying Time-Of-Check-To-Time-Of-Use (TOCTTOU) problem (called STEM), which enumerates the potential file system call pairs (called exploitable TOCTTOU pairs) that form the check/use steps. The system function calls are classified into a plurality of predefined classes and pairs of the function calls are formed according to predefined criteria, where the function calls within a pair are associated with the same file invariant.

URI

http://hdl.handle.net/1853/58029

Collections

Georgia Tech Patents [1761]