Ensuring Securityllable Real-Time Systems by Static Program Analysis (원격 실시간 제어 시스템을 위한 정적 프로그램 분석에 의한 보안 기법)

Sung-Soo Lim (임성수); Kihwal Lee (이기활)

Ensuring Securityllable Real-Time Systems by Static Program Analysis

Journal of The Korea Society of Computer and Information
Abbr : JKSCI
2005, 10(3), pp.75-88
Publisher : The Korean Society Of Computer And Information
Research Area : Engineering > Computer Science

Sung-Soo Lim ¹, Kihwal Lee ²

¹국민대학교
²University of Illinois at Urbana - Champaign

Candidate

ABSTRACT

This paper proposes a method to ensure security attacks caused by insertion of malicious codes in a real-time control system that can be accessed through networks. The proposed technique is for dynamically upgradable real-time software through networks and based on a static program analysis technique to detect the malicious uses of memory access statements. Validation results are shown using a remotely upgradable real-time control system equipped with a modified compiler where the proposed security technique is applied.

KEYWORDS

Real-time system, static program analysis, system security

Citation status

* References for papers published after 2023 are currently being built.

[journal] / 2000. / A reliable telel aboratory environment. In International Conference on Internet Computing

[journal] / nov.1994. / and E. D. Lazowska. Sharing and Protection in a Single Address Space Operating Systems. ACM Transactions on Computer Systems

[journal] / 1998 / Automatic Adaptive Detection and Prevention of Buffer Overfow Attacks. In Proceedings of the 7th USENIX Security Symposium

[journal] / 1997. / R. W. M. Jones and P. H. J. Kelly. Backwards Compatible Bounds Checking for Arrays and Pointers in C Programs. In Proceedings of the Third International Workshop on Automated Debugging

[journal] / 1998 / om. Integrating Path and Timing Analysis Using Instruction Level Simulation Techniques. In Proceedings of 1998 ACM SIGPLAN Workshop on Languages and Tools for Embedded Systems

[journal] / 1997. / Advanced Compiler Design and Implementation / S. S. Muchnick. Advanced Compiler Design and Implementation. Morgan Kaufmann Publishers

[journal] / 1997 / Carrying Code. In Proceedings of the 1997 Symposium on Principles of Programming Languages

[journal] / 2000 / R. Rugina and M. Rinard. Symbolic Bounds Analysis of Pointers and Accessed Memory Regions. In Proceedings of the SIGPLAN'2000 Conference on Programming Language Design and Implementation

[journal] / 1998. / L. Sha. Dependable System Upgrade. In Proceedings of the 19th Real

[journal] / EROS: A Fast Capability System

[journal] / 1993. / and G. Heiser. Capability based Protection in the Mungi Operating System. In Proceedings of the 3rd International Workshop on Object Orientation in Operating Systems

[journal] / feb.2000. / and A. Aiken. A First Step Towards Automated Detection of Buffer Overrun Vulnerabilities. In Network and Distributed System Security Symposium

[journal] / pldi'2000 / and T. Reps. Safety Checking of Machine Code. In Proceedings of the SIGPLAN 2000 Conference on Programming Language Design and Implementation

[journal] / 2004 / Embedded System Security

[journal] / 2005 / 보안 운영체제의 오버헤드 분석 10(2)

[journal] / 2005 / 보안 운영체제를 위한 강제적 접근 제어 보호 프로파일 10(1)

KJCKorea
Journal Central

Journal of The Korea Society of Computer and Information 2023 KCI Impact Factor : 0.65