References
- 한국정보처리학회지(C) v.9 no.4 버퍼오버플로우 공격방지를 위한 컴파일러 기법(Improving Compiler to Prevent Buffer Overflow Attack) 김종의;이성욱;홍만표
- Code_Red_II
- SQL_Overflow
- OctaveSM Criteria Version2.0 TECHNICAL REPORT CMU/SEI-2001-TR-016 C.J. Alberts;A.J. Dorofee
- technique protection tool for Linux stack smashing Stack Shiedl-A
- Proceedings of USENIX Annual Technical Conference Transparent run-time defense against stack smashing attacks A. Baratloo;N. Singh;T. Tsai
- Compiler Security Checks In Depth B. Bray
- LibMib Allocated String Functions F. J. Cavalier III.
- proc. of ICDSC RAD: A compile time solution for buffer overflow attacks T. Chiueh;F. Hsu
- Capability Maturity Model Integrated(CMMI) main page
- proc. of the 7th USENIX Security Conference Stackguard: Automatic adaptive detection and prevention of buffer-overflow attacks C.Cowan(et al.)
- Proc. 12th USENIX Security Symposium PointGuard TM: Protecting Pointers from Buffer Overflow Vulnerabilities C. Cowan(et al.)
- Static Analysis Symposium(SAS01) Cleanness Checking of String Manipulations in C Programs via Integer Analysis N. Dor;M. Rodeh;M. Sagiv
- GCC extension for protecting applications from stack-smashing attacks H. Etoh(et al.)
- proc. of the 19th national information systems security conference System Security Engineering Capability Maturity Model, Model K. Ferraiolo
- ACM SIGSOFT Software Engineering Notes v.22 no.4 Property Based Testing:A New Approach to Testing for Assurance G. Fink;M. Bishop
- Proc. 10th USENIX Security Symposium Stackghost: Hardware facilitated stack protection M. Frantzen;M. Shuey
- Pro.of the IEEE Symposium on Security and Privacy An automated approach for identifying potential vulnerabilities in software A. Ghosh;T. O'Connor;G. McGraw
- proc. of the Network and Distributed System Security Security Symposium Testing C Programs for Buffer Overflow Vulner-abilities E. Haugh;M. Bishop
- Writing Secure Code M. Howard;D. LeBlanc
- Stackgurad
- 11th USENIX Security Symposium Secure execution via program shepherding V. Kiriansky;D. Bruening;S. Amarasinghe
- proc. of the 21st NIST-NCSC National Information Systems Security Conference An Analysis of Some Software Vulnerabilities I. Krsul;E. Spafford;M. Tripunitara
- proc. of 2001 USENIX Security Symposium Statically Detecting Likely Buffer Overflow Vulnerabilities D. Larochelle;D.Evans
- Technical Report CMU/SEI-2002-TR-026 Life-Cycle Models for Survivable Systems N. R. Mead(et. al.)
- Technical report Fuzz Revisited:A Re-examination of the Reliability of UNIX Utilities and Services B. P. Miller(et. al.)
- Best Practice for Secure Development R. Peteanu
- proc. of USENIX Annual Technical Conference A Binary Rewriting Defense against Stack-based Buffer Overflow Attacks M. Prasad;T. Chiueh
- proc. of the 10th USENIX Security Symposium Detecting format string vulnerabilities with type qualifiers U. Shankar(et. al.)
- Rats(the Rough Auditing Tool for Security)
- IEEE Symposium on Security and Privacy A Fast Automaton Based Method for Detecting Anomalous Program Behaviors R. Sekar(et. al.)
- SSE-CMM(Systems Security Engineering-Capability Maturity Model)
- SANS Security Essential GSEC Practical Assignment Improving Software Security During Development, SANS InfoSec Reading Room R. Usher
- Annual Computer Security Applications Conference ITS4: A static vulnerability scanner for C and C++ code J. Viega;J.T.(et. al.)
- Proceedings of the Network and distributed system security symposium A first step towards automated detection of buffer overrun vulner-abilities D. Wagner(et. al)
- proc of 2001 IEEE Symposium on Security and Privacy Intrusion Detection via Static Analysis D. Wagner;D. Dean
- FlawFinder Document D. Wheeler
- Secure Programming for Linux and Unix HOWTO D. Wheeler
- proc. of the 7th Nordic Workshop on Secure IT Systems(Nordsec 2002) A Comparison of Publicly Available Tools for Static Intrusion Prevention J. Wilander;M. Kamkar
- proc. of the 10th Network and Distributed System Security Symposium (NDSS'03) A Comparison of Publicly Available Tools for Dynamic Buffer Overflow Prevention J. Wilander;M. Kamkar