Integrity Verification of Applications on RADIUM Architecture Page: 30
vii, 44 pages : color illustrationsView a full description of this thesis.
Extracted Text
The following text was automatically extracted from the image on this page using optical character recognition software:
TABLE 3.1. Results: Performance and Efficiency
Prozilla 1.3.7
Attacked Attacks Performance
Vulnerability CVE-ID Invariant/constraint Use Cases
Simulated detected overhead
Limited
Yes Yes 80%
bandwidth
Remote Stack overflow CVE:2004-1120 Return address Interrupted download Yes Yes 102%
Single thread Yes Yes 64%
Different Port Yes Yes 110%
Limited bandwidth Yes Yes 60%
Interrupted download Yes Yes 60%
Format string CVE:2005-0523 Data invariant
Single thread Yes Yes 50%
Different Port Yes Yes 77%
Limited bandwidth Yes Yes 65%
Interrupted download Yes Yes 60%
Result handling buffer overflow CVE:2005-2961 Data invariant
Single thread Yes Yes 54%
Different Port Yes Yes 90%
Ghttpd 1.4
Web Page Access Yes Yes 27%
Get request overflow CVE:2001-0820 Return address File Not found No - 12%
Virtual Hosts enabled Yes Yes 86%
Web Page Access Yes Yes 33%
Deamon Overflow CVE:2002-1904 Caller-Calee File Not Found No - 12%
Virtual Hosts enabled Yes Yes 56%
Nullhttp 0.5
Web Page Access Yes Yes 27%
Get request overflow CVE:2001-0820 Return address File Not found No - 12%
Virtual Hosts enabled Yes Yes 86%
Web Page Access Yes Yes 33%
Deamon Overflow CVE:2002-1904 Caller-Calee File Not Found No - 12%
Virtual
Yes Yes 56%
Hosts enabled
average speed of application over five executions for downloading different file sizes. Running
time was measured with and without the integrity measurement. Integrity verification has
an average runtime overhead range of 50%-110%. There was some time lapse between the
moment attacks happened and the moment it was detected, as parsing of memory map is
being performed while the application continues execution. This is done to reduce run time.30
Upcoming Pages
Here’s what’s next.
Search Inside
This thesis can be searched. Note: Results may vary based on the legibility of text within the document.
Tools / Downloads
Get a copy of this page or view the extracted text.
Citing and Sharing
Basic information for referencing this web page. We also provide extended guidance on usage rights, references, copying or embedding.
Reference the current page of this Thesis.
Tarigopula, Mohan Krishna. Integrity Verification of Applications on RADIUM Architecture, thesis, August 2015; Denton, Texas. (https://digital.library.unt.edu/ark:/67531/metadc804915/m1/38/: accessed July 17, 2024), University of North Texas Libraries, UNT Digital Library, https://digital.library.unt.edu; .