Survivable Active Networks
Final rept Jul 1997-Jan 2001
TELCORDIA TECHNOLOGIES INC PISCATAWAY NJ
Pagination or Media Count:
A total solution to the computer security problem requires commitment to security issues at every stage of an applications lifecycle. The Survivable Active Networks SAN project applies to the last lifecycle stage-application operation. While only one piece of the solution, as a solution of last resort it is vital. SAN technology is a programming environment for creating solutions. SAN research included using this programming environment to create actual security solutions that provide protection against real-world attacks. SAN technology remediates latent software errors that enable popular and powerful exploits, including stack and buffer overflows, race conditions, ping-of-death, neptune, port scanning, and syn-flooding. It allows end-users who have software development expertise to customize defenses for the applications they use. SAN also allow third-party vendors to offer customized add-ons for applications so that end-users without programming abilities can still obtain SAN benefits, even in the absence of application source code. The primary focus of SAN was understanding whether the underlying principles of interception and interposition were valuable for empowering end user security remediation. Through building a prototype for Linux and using the prototype in evaluations, the value of basic concepts of interception and interposition have been confirmed.
- Computer Programming and Software
- Computer Systems Management and Standards