Survivable Active Networks

摘要

A total solution to the computer security problem requires commitment to security issues at every stage of an application's lifecycle. The Survivable Active Networks (SAN) project applies to the last lifecycle stage-application operation. While only one piece of the solution, as a solution of last resort it is vital. SAN technology is a programming environment for creating solutions. SAN research included using this programming environment to create actual security solutions that provide protection against real-world attacks. SAN technology remediates latent software errors that enable popular and powerful exploits, including stack and buffer overflows, race conditions, ping-of-death, neptune, port scanning, and syn-flooding. It allows end-users who have software development expertise to customize defenses for the applications they use. SAN also allow third-party vendors to offer customized add-ons for applications so that end-users without programming abilities can still obtain SAN benefits, even in the absence of application source code. The primary focus of SAN was understanding whether the underlying principles of interception and interposition were valuable for empowering end user security remediation. Through building a prototype for Linux and using the prototype in evaluations, the value of basic concepts of interception and interposition have been confirmed.