Upload File

ghost patches: faux patches for faux vulnerabilities · 2017-04-03 · publicly disclosed...

  • Home
  • Documents
  • Ghost Patches: Faux Patches for Faux Vulnerabilities · 2017-04-03 · publicly disclosed vulnerabilities to exploit unpatched systems.' How misaligned incentives give hackers an
1
Ghost Patches: Faux Patches for Faux Vulnerabilities Jeff Avery, Eugene H. Spafford Problem: Patch Based Exploit Generation Fix: Deceptive Patches Results 2 Traditional Patch Runtime Dynamic Analysis Time Faux Patch a = b + c; If (a < 0) return a = b + c; If (a < 0) return c = a + d; If (c < 473) e=c e += 78 The National Science Foundation supported this research under award number 1548114. 1. Avery, Jeffrey. Almeshekah, Mohammed H.. Spafford, Eugene H.. Offensive Deception in Computing. In 12th International Conference on Cyber Warfare and Security (ICCWS 2017). 2. Avery, Jeffrey. Spafford, Eugene. Ghost Patches: Faux Patches for Faux Vulnerabilities. To appear in 32nd International Conference on ICT Systems Security and Privacy Protection (IFIP SEC 2017). Conclusion Ghost patch dynamic analysis time is significantly higher compared to traditional patches No statistically significant difference in program runtime between faux and unpatched programs Deception can be used to increase patch analysis time and exploit development by attackers while only trivially impacting program runtime Deception can be used in addition to traditional defenses to influence attackers’ decision making because of biases. 1

Upload: others

Post on 24-Jul-2020

3 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Ghost Patches: Faux Patches for Faux Vulnerabilities · 2017-04-03 · publicly disclosed vulnerabilities to exploit unpatched systems.' How misaligned incentives give hackers an

Ghost Patches: Faux Patches for Faux VulnerabilitiesJeff Avery, Eugene H. Spafford

Problem: Patch Based Exploit Generation

Fix: Deceptive Patches

Results2

Traditional Patch

RuntimeDynamic Analysis Time

Faux Patcha = b + c;If (a < 0)return

a = b + c;If (a < 0)return

c = a + d;If (c < 473)e = ce += 78

The National Science Foundation supported this research under award number 1548114.1. Avery, Jeffrey. Almeshekah, Mohammed H.. Spafford, Eugene H.. Offensive Deception in Computing.  In 12th International Conference on Cyber Warfare and Security (ICCWS 2017).2. Avery, Jeffrey. Spafford, Eugene. Ghost Patches: Faux Patches for Faux Vulnerabilities.  To appear in 32nd International Conference on ICT Systems Security and Privacy Protection (IFIP SEC 2017).

Conclusion• Ghost patch dynamic analysis time is significantly higher compared to 

traditional patches• No statistically significant difference in program runtime between faux 

and unpatched programs• Deception can be used to increase patch analysis time and exploit 

development by attackers while only trivially impacting program runtime

Deception can be used in addition to traditional defenses to influence attackers’ decision making because of biases.1

Accelerate Patching Progress in the Enterprise...Patch Management • Patches fix functional and security problems (vulnerabilities) on Operating Systems and Applications • Patching

Microsoft Security Bulletin for February 2019 Patches That ... · Microsoft Security Bulletin for February 2019 Patches That Fix 79 Security Vulnerabilities Date of Release: Feburary

From Patches to Honey-Patches: Lightweight Attacker Misdirection

DA-GE EMBLEM USA Here for Detailed Product Im… · Faux Suede Backgrounds Embroidered Patches. ... over Cloisonne. Relief effect. Available with epoxy dome. Classic dimentional look

global security challenges in partnership with defense ... · vulnerabilities, synthesize exploits and create patches of real-world software. With two awards from the Defense Advanced

1 Dr. Scott Schaefer Coons Patches and Gregory Patches

Faux Plancher

· Web viewAttack Summary Most Directly Related Control Attackers exploit new vulnerabilities on systems that lack critical patches in organizations that do not know that they are

Les sanctions pour faux et usage de faux Dans l'article 441-1 du Code pénal français, le faux et l'usage de faux sont définis comme “le fait d'altérer

1 Copyright © 2011 M. E. Kabay. All rights reserved. Patches CSH5 Chapter 40 “Managing Patches & Vulnerabilities” Peter Mell & Karen Kent Scarfone

INCULPATION POUR ESCROQUERIE, FAUX, USAGE DE FAUX ... · INCULPATION POUR ESCROQUERIE, FAUX, USAGE DE FAUX... Le contentieux porte sur un demi-milliard La patate chaude chez le doyen

Patch Management by TeamViewer · Automate your patching process! Automatically detect and patch software and OS vulnerabilities. Remote Management TeamViewer DEVICES ASSETS PATCHES

1. 2 ● In 2006 the patches for client-side vulnerabilities overcame other categories in Microsoft software. ● In 2010, Symantec’s Global Internet Security

Faux finishing ideas with Art-Faux Designs Naples Fl

Le faux informatique : le (faux) frère jumeaux du faux en écritures · 2018-07-05 · informatique. La présente contribution a pour objectif central de comparer le faux informatique

Microsoft's Security Patches for July 2019 Fix 79 Security ... · Overview Microsoft released July 2019 security updates on Tuesday which fix 79 vulnerabilities ranging from simple

Faux amis

NASA Mission Patches. History of Mission Patches

Faux fiancés

Faux Shutters

2008_Dana Donaty Designs Faux Finishes, Faux Effcts World Magazine Vlll

Vulnerabilities and Patches of Open Source …...3 Vulnerabilities and Patches of Open Source Software: An Empirical Study 1. Introduction Software selection is an important consideration

Sujets traités : Les Faux-Monnayeurs, Le Journal des Faux

Vrai ? Faux ?

Enjoy. Breathe. Feel good. Faux Flora & Faux Plants

L’INFOSCOPE L’hebdo 22 DES FAUX SEINS FAUX

Faux finishing ideas with Art-Faux Designs Inc. Naples Fl

Cryptocurrency Anti-Money Laundering Report, 2019 Q4 · 2/11/2020  · OneCoin – Widely Publicized Faux Cryptocurrency Ponzi Scheme 18 Potential Blockchain Vulnerabilities 19 Maker

PatchDroid: Third Party Security Patches for Android · PatchDroid: Third Party Security Patches for Android ... third-party security patches for Android ... – Inject patches into

Graber Lake Forest Faux Wood and Premium Faux …...2" (5.1cm) Blind shown Graber Lake Forest Faux Wood and Premium Faux Wood Blind Installation Instructions Center Support - Bracket

Vrai ou faux ? Vrai Faux Vrai Faux Vrai Faux · Vrai ou faux ? 1. Pour construire une phrase négative, on ajoute ne ou n’et pas. Vrai Faux 2. A l’oal, on ou lie souvent le ne

Increasing Cybersecurity Resilience through Security ... · gle to timely deploy patches and fix affected software. A look at the number of reported vulnerabilities each year

Montage Fabienne B. 64148150210245270284 ours noir FAUX BRAVO FAUX orignal FAUX BRAVO FAUX bison FAUX BRAVO FAUX vache FAUX BRAVO chevre FAUX BRAVO FAUX

Faux Presentation

Activision Patches | Activision Patches for Sale