首页> 外文会议>Engineering secure software and systems >Systematically Eradicating Data Injection Attacks Using Security-Oriented Program Transformations

【24h】

Systematically Eradicating Data Injection Attacks Using Security-Oriented Program Transformations

机译：使用面向安全的程序转换来系统地消除数据注入攻击

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Injection attacks and their defense require a lot of creativity from attackers and secure system developers. Unfortunately, as attackers rely increasingly on systematic approaches to find and exploit a vulnerability, developers follow the traditional way of writing ad hoc checks in source code. This paper shows that security engineering to prevent injection attacks need not be ad hoc. It shows that protection can be introduced at different layers of a system by systematically applying general purpose security-oriented program transformations. These program transformations are automated so that they can be applied to new systems at design and implementation stages, and to existing ones during maintenance.

机译：注入攻击及其防御需要攻击者和安全系统开发人员的大量创造力。不幸的是，随着攻击者越来越依赖系统的方法来发现和利用漏洞，开发人员遵循了在源代码中编写即席检查的传统方法。本文表明，防止注入攻击的安全工程不是临时性的。它表明可以通过系统地应用面向通用安全性的程序转换，在系统的不同层引入保护。这些程序转换是自动化的，因此它们可以在设计和实施阶段应用于新系统，并在维护期间应用于现有系统。

著录项

来源
《Engineering secure software and systems》|2009年|75-90|共16页
会议地点 Leuven(BE);Leuven(BE)
作者
Munawar Hafiz; Paul Adamczyk; Ralph Johnson;
展开▼
作者单位

University of Illinois at Urbana-Champaign 201 N Goodwin Avenue, Urbana, IL 61801, USA;

University of Illinois at Urbana-Champaign 201 N Goodwin Avenue, Urbana, IL 61801, USA;

University of Illinois at Urbana-Champaign 201 N Goodwin Avenue, Urbana, IL 61801, USA;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类计算机软件;
关键词

相似文献

外文文献
中文文献
专利

1. A systematic methodology for the application of data transfer and storage optimizing code transformations for power consumption and execution time reduction in realizations of multimedia algorithms on programmable processors [J] . Masselos K., Catthoor F., Goutis C.E., IEEE transactions on very large scale integration (VLSI) systems . 2002,第4期

机译：在可编程处理器上实现多媒体算法时，用于数据传输和存储的系统方法论，用于优化代码转换以降低功耗和减少执行时间
2. A systematic methodology for the application of data transfer and storage optimizing code transformations for power consumption and execution time reduction in realizations of multimedia algorithms on programmable processors [J] . Masselos K., Catthoor F., Goutis C.E., IEEE transactions on very large scale integration (VLSI) systems . 2002,第4期

机译：在可编程处理器上实现多媒体算法时，用于数据传输和存储的系统方法论，用于优化代码转换以降低功耗和减少执行时间
3. A systematic methodology for the application of data transfer and storage optimizing code transformations for power consumption and execution time reduction in realizations of multimedia algorithms on programmable processors [J] . Masselos K., Catthoor F., Goutis C.E., IEEE transactions on very large scale integration (VLSI) systems . 2002,第4期

机译：一种系统方法，用于应用数据传输和存储优化代码转换，用于可编程处理器上多媒体算法的实现的功耗和执行时间减少
4. Systematically Eradicating Data Injection Attacks Using Security-Oriented Program Transformations [C] . Munawar Hafiz, Paul Adamczyk, Ralph Johnson International Symposium on Engineering Secure Software and Systems . 2009

机译：系统地消除了使用安全的程序转换的数据注入攻击
5. Vulnerability Analysis of False Data Injection Attacks on Supervisory Control and Data Acquisition and Phasor Measurement Units [D] . Zhang, Jiazi. 2017

机译：监控，数据采集和相量测量单元中虚假数据注入攻击的漏洞分析
6. Privacy-Preserving Data Aggregation against False Data Injection Attacks in Fog Computing [O] . Yinghui Zhang, Jiangfan Zhao, Dong Zheng, 2018

机译：雾计算中针对虚假数据注入攻击的隐私保护数据聚合
7. Joint-Transformation-Based Detection of False Data Injection Attacks in Smart Grid [O] . Sandeep Kumar Singh, Kush Khanna, Ranjan Bose, 2018

机译：基于联合转换的智能网格中的虚假数据注入攻击的检测
8. Empirical Evaluation of a Security-Oriented Datagram Protocol. [R] . Anderson, D. P., Ferrari, D., Rangan, P. V., 1987

机译：面向安全的数据报协议的实证评估。

Systematically Eradicating Data Injection Attacks Using Security-Oriented Program Transformations

摘要

著录项

相似文献

相关主题

期刊订阅