Detection of file-based race conditions

被引:0
|
作者
Lhee K.-S. [1 ]
Chapin S.J. [1 ]
机构
[1] Systems Assurance Institute, Syracuse University, Syracuse
关键词
Race condition; Security; Time-of-check-to-time-of-use (TOCTTOU) flaws;
D O I
10.1007/s10207-004-0068-2
中图分类号
学科分类号
摘要
Multiprocessing environments such as Unix are susceptible to race conditions on the file space, since processes share files in the system. A process accessing a file may get unexpected results while executing in a critical section if the binding between the file name and the file object is altered by another process. Such errors, called time-of-check-to-time-of-use (TOCTTOU) binding flaws, are among the most prevalent security flaws. This paper presents a model that detects TOCTTOU binding flaws by checking the integrity of bindings between file names and file objects at run time and a simplified prototype of the detection model. We discuss the properties of the detection model and its run-time overhead, based on the results of experiments on the prototype. © Springer-Verlag 2005.
引用
收藏
页码:105 / 119
页数:14
相关论文
共 50 条
  • [1] File-Based Sports Production
    Bergeron, Michael
    [J]. SMPTE MOTION IMAGING JOURNAL, 2010, 119 (04): : 56 - 63
  • [2] File-Based Workflows Update
    Footen, John
    Kovalick, Al
    [J]. SMPTE MOTION IMAGING JOURNAL, 2011, 120 (06): : 69 - 71
  • [3] File-based replica management
    Kunszt, P
    Laure, E
    Stockinger, H
    Stockinger, K
    [J]. FUTURE GENERATION COMPUTER SYSTEMS-THE INTERNATIONAL JOURNAL OF ESCIENCE, 2005, 21 (01): : 115 - 123
  • [4] File-based data processing on MESSENGER
    Krupiarz, CJ
    Artis, DA
    Calloway, AB
    Frangos, CM
    Heggestad, BK
    Holland, DB
    Stratton, WC
    [J]. PROCEEDINGS OF THE FIFTH IAA INTERNATIONAL CONFERENCE ON LOW-COST PLANETARY MISSIONS, 2003, 542 : 435 - 442
  • [5] Multiprocessors may reduce system dependability under file-based race condition attacks
    Wei, Jinpeng
    Pu, Calton
    [J]. 37TH ANNUAL IEEE/IFIP INTERNATIONAL CONFERENCE ON DEPENDABLE SYSTEMS AND NETWORKS, PROCEEDINGS, 2007, : 358 - +
  • [6] File-based data processing on MESSENGER
    Krupiarz, Christopher J.
    Artis, David A.
    Calloway, Andrew B.
    Frangos, Constantine M.
    Heggestad, Brian K.
    Holland, Douglas B.
    Stratton, William C.
    [J]. ACTA ASTRONAUTICA, 2006, 59 (8-11) : 1071 - 1078
  • [7] Implementing Networked File-Based Workflows
    Smith, Clyde
    [J]. SMPTE MOTION IMAGING JOURNAL, 2009, 118 (02): : 22 - 25
  • [8] File-based broadcasting system in Europe
    Akiyama, Jouji
    [J]. Kyokai Joho Imeji Zasshi/Journal of the Institute of Image Information and Television Engineers, 2009, 63 (01): : 26 - 29
  • [9] Digital Storage in File-Based Workflows
    Coughlin, Thomas
    [J]. SMPTE MOTION IMAGING JOURNAL, 2012, 121 (06): : 77 - 82
  • [10] Dynamic detection and prevention of race conditions in file accesses
    Tsyrklevich, E
    Yee, B
    [J]. USENIX ASSOCIATION PROCEEDINGS OF THE 12TH USENIX SECURITY SYMPOSIUM, 2003, : 243 - 255