Vortragender | Prof. Michael Ernst MIT, Cambridge, USA |
Zeit | Montag, 17. November 2008, 17:30 Uhr |
Ort |
Hörsaal -101, Informatik-Hauptgebäude (Geb. 50.34) |
Beschreibung |
This talk presents ClearView, a system that automatically creates patches for previously unknown security vulnerabilities in commercial off-the-shelf software. The patched program survives otherwise fatal attacks, and it provides uninterrupted service both during and after attacks. ClearView correlates violations of this behavior with attacks, by using an ClearView was evaluated by being attacked by a hostile external Red Team. The result indicates that ClearView can successfully and automatically eliminate otherwise exploitable vulnerabilities in stripped Windows binaries. |