loading
Papers

Research.Publish.Connect.

Paper

Authors: Daniele Mucci 1 and Bernhards Blumbergs 2

Affiliations: 1 Centre for Digital Forensics and Cyber Security, Tallinn University of Technology and Estonia ; 2 Centre for Digital Forensics and Cyber Security, Tallinn University of Technology, Estonia, CERT.LV, IMCS University of Latvia and Latvia

ISBN: 978-989-758-359-9

Keyword(s): ELF Binary Analysis, GNU/Linux System Hardening, Vulnerability Assessment, Software Containers.

Related Ontology Subjects/Areas/Topics: Internet Technology ; Intrusion Detection and Response ; Web Information Systems and Technologies

Abstract: Attacks against binaries, including novel hardware based attacks (e.g., Meltdown), are still very common, with hundreds of vulnerabilities discovered every year. This paper presents TED, an auditing tool which acts from the defense perspective and verifies whether proper defenses are in place for the GNU/Linux system and for each ELF binary in it. Unlike other solutions proposed, TED aims to integrate several tools and techniques by the use of software containers; this choice created the necessity to compare and analyze the most popular container platforms to determine the most suitable for this use case. The containerization approach allows to reduce complexity, gain flexibility and extensibility at the cost of a negligible performance loss, while significantly reducing the dependencies needed. Performance and functionality tests, both in lab and real-world environments, showed the feasibility of a container-based approach and the usefulness of TED in several use cases.

PDF ImageFull Text

Download
CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.91.106.223

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Mucci, D.; Blumbergs, B. and Blumbergs, B. (2019). TED: A Container based Tool to Perform Security Risk Assessment for ELF Binaries.In Proceedings of the 5th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-359-9, pages 361-369. DOI: 10.5220/0007371603610369

@conference{icissp19,
author={Daniele Mucci. and Bernhards Blumbergs. and Bernhards Blumbergs.},
title={TED: A Container based Tool to Perform Security Risk Assessment for ELF Binaries},
booktitle={Proceedings of the 5th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2019},
pages={361-369},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0007371603610369},
isbn={978-989-758-359-9},
}

TY - CONF

JO - Proceedings of the 5th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - TED: A Container based Tool to Perform Security Risk Assessment for ELF Binaries
SN - 978-989-758-359-9
AU - Mucci, D.
AU - Blumbergs, B.
AU - Blumbergs, B.
PY - 2019
SP - 361
EP - 369
DO - 10.5220/0007371603610369

Login or register to post comments.

Comments on this Paper: Be the first to review this paper.