Secure Coding mailing list archives

Previous By Date Next
Previous By Thread Next

Microsoft Pushes Secure, Quality Code

From: jms at bughunter.ca (J.M. Seitz)
Date: Mon, 08 Oct 2007 12:40:11 -0700
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hey Steve,


Are there any tools out there that try to measure attack surface?  Has
anybody had any experience in trying to apply it?


SecurityInnovation's HoloDeck has an attack surface module, but
unfortunately it is just a fancy wrapper for a Win32 strace() :)

I am currently working on a research paper for my GCIH Gold that is
about measuring code-coverage of an attack surface. For example being
able to intelligently measure whether that magic packet you sent into
a process _really_ covered 100 basic blocks, or were 20 of them a
threading routine completely outside of the main surface (packet
parsing) area.

It is a tough thing to just measure, however some researchers
at Carnegie Mellon have done some interesting work:

http://www.cs.cmu.edu/~pratyus/qop.pdf

And their mainpage is here: http://www.cs.cmu.edu/~pratyus/as.html

Anyways I would be interested to hear some of the gurus respond back on
this topic, as its a very relevant metric for QA and infosec professionals.

JS


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFHCoebKEj7ZJktQNsRArTgAKCWf96Tp8NXF7GuTiQN1BzyVlTEMwCfXpj9
++VxKBeI8WcXP5tLWUYQdU4=
=WoVW
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: