A Signature-Free Buffer Overflow Attack Blocker Using Genetic Programming

Created by W.Langdon from gp-bibliography.bib Revision:1.3973

@Article{Jothsna:2013:ijetae,
  author =       "Kotha Jothsna and R. V. Krishniah",
  title =        "A Signature-Free Buffer Overflow Attack Blocker Using
                 Genetic Programming",
  journal =      "International Journal of Emerging Technology and
                 Advanced Engineering",
  year =         "2013",
  volume =       "3",
  number =       "2",
  pages =        "640--647",
  month =        feb,
  keywords =     "genetic algorithms, genetic programming, code
                 injection, intrusion detection systems",
  annote =       "The Pennsylvania State University CiteSeerX Archives",
  bibsource =    "OAI-PMH server at citeseerx.ist.psu.edu",
  language =     "en",
  oai =          "oai:CiteSeerX.psu:10.1.1.413.8516",
  rights =       "Metadata may be used without restrictions as long as
                 the oai identifier remains attached to it.",
  URL =          "http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.413.8516",
  URL =          "http://www.ijetae.com/files/Volume3Issue2/IJETAE_0213_109.pdf",
  ISSN =         "2250-2459",
  size =         "8 pages",
  abstract =     "Now days Internet threat takes a blended attack form,
                 targeting individual users to gain control over
                 networks and data. Buffer Overflow which is one of the
                 most occurring security vulnerabilities in Internet
                 services such as such as web service, cloud service
                 etc. Motivated by the observation that buffer overflow
                 attacks typically contain executables whereas
                 legitimate client requests never contain executables in
                 most Internet services. Unlike the previous detection
                 algorithms, a new SigFree uses a Genetic Programming
                 technique that is generic, fast, and hard for exploit
                 code to evade. SigFree blocks attacks by detecting the
                 presence of code, it is a signature free, thus it can
                 block new and unknown buffer overflow attacks; SigFree
                 is also immunised from most attack-side code
                 obfuscation. To do so, we pay particular attention to
                 the formulation of an appropriate fitness function and
                 partnering instruction set. Moreover, by making use of
                 the intron behaviour inherent in the genetic
                 programming paradigm, we are able to explicitly
                 Obfuscate the true intent of the code. All the
                 resulting attacks Defeat the widely used in Intrusion
                 Detection System.",
}

Genetic Programming entries for Kotha Jothsna R V Krishniah

Citations