Login | Register

Taxonomy of Linux Kernel Vulnerability Solutions

Title:

Taxonomy of Linux Kernel Vulnerability Solutions

Mokhov, Serguei A., Laverdière, Marc-André and Benredjem, Djamel (2008) Taxonomy of Linux Kernel Vulnerability Solutions. In: International Joint Conferences on Computer, Information, and Systems Sciences, and Engineering (CISSE 2007), December 2007.

[thumbnail of report.pdf]
Preview
Text (application/pdf)
report.pdf - Accepted Version
183kB

Official URL: http://dx.doi.org/10.1007/978-1-4020-8739-4_86

Abstract

This paper presents the results of a case study on software vulnerability solutions in the Linux kernel. Our major contribution is the introduction of a classification of methods used to solve vulnerabilities. Our research shows that error handling, redesign, and precondition validation are the most used methods in solving vulnerabilities in the Linux kernel. This contribution is accompanied with statistics on the occurrence of the different types of vulnerabilities and their solutions that we observed during our case study, combined with example source code patches. We also combine our findings with existing programming guidelines to create the first security-oriented coding guidelines for the Linux kernel.

Divisions:Concordia University > Gina Cody School of Engineering and Computer Science > Computer Science and Software Engineering
Concordia University > Gina Cody School of Engineering and Computer Science > Concordia Institute for Information Systems Engineering
Concordia University > Research Units > Computer Security Laboratory
Item Type:Conference or Workshop Item (Paper)
Refereed:Yes
Authors:Mokhov, Serguei A. and Laverdière, Marc-André and Benredjem, Djamel
Date:2008
Digital Object Identifier (DOI):10.1007/978-1-4020-8739-4_86
Keywords:Linux kernel, Software Vulnerabilities, Vulnerability Remedial, Vulnerability Solutions Taxonomy
ID Code:7809
Deposited By: Serguei Mokhov
Deposited On:30 Sep 2011 15:15
Last Modified:18 Jan 2018 17:31
All items in Spectrum are protected by copyright, with all rights reserved. The use of items is governed by Spectrum's terms of access.

Repository Staff Only: item control page

Downloads per month over past year

Research related to the current document (at the CORE website)
- Research related to the current document (at the CORE website)
Back to top Back to top