Software That's Resilient Against Hacker Attack

October 29, 2009 by John Messina Software That's Resilient Against Hacker Attack

Image Credit: Technology Review

(PhysOrg.com) -- A team of researchers headed by Martin Rinard, a professor of computer science at MIT, have developed new software that automatically patches errors in deployed software in a matter of minutes.

The is called ClearView and is designed to apply patches whenever it detects that something has gone wrong with the program. ClearView operates by monitoring a program's normal behavior and establishing a set of rules.

ClearView looks for certain types of errors that are mostly caused by an attacker introducing into the operating program. When ClearView detects a software intrusion, it identifies the rule that has been compromised and generates a set of repair patches designed to force the software to follow the compromised rules. ClearView then studies all possibilities to determine which selected rule is the most successful patch.

ClearView can be very successful when it is installed on multiple computers running the same software. By ClearView analyzing the malicious code and applying the most effective rule on one machine, it can then apply the patch to all other machines. ClearView applies the patch to the binary code, bypassing the source code which enables it to fix programs without human intervention.

ClearView was tested on a group of computers running Firefox and an independent team to launch an attack on the . The attack team used 10 different attacks to inject malicious code into Firefox. ClearView was successful in all 10 attacks by blocking the malicious code and shutting down the program before its intended attack took effect.

ClearView created patches that corrected the errors introduced by the malicious code and discarded any corrections that had a negative effect. ClearView, on average, came up with a working patch within five minutes of its first attack.

In a TR interview, Rinard stated: "What this research is leading us to believe is that software isn't in itself inherently fragile and brittle because of errors. It's fragile and brittle because people are afraid to let the software continue if they think there's something wrong with it." Some software engineering approaches, such as "failure-oblivious computing" or "acceptable computing," share this philosophy.

More information: Automatically Patching Errors in Deployed Software, 22nd ACM Symposium on Operating Systems Principles. [Paper] [Slides]

FLV player

Automatically Patching Errors in Deployed Software, Conference Audio.


Via: Technology Review

© 2009 PhysOrg.com


print this article email this article download pdf blog this article bookmark this article     Stumble it Digg this share on Facebook retweet share on Reddit add to delicious
Rate this story - 4.7 /5 (6 votes)

Rank Filter

Move the slider to adjust rank threshold, so that you can hide some of the comments.


Display comments: newest first

  • vantomic - Oct 29, 2009
    • Rank: not rated yet
    I'll just get started with the obvious comment...what makes the rules so safe? attack the rules.

    This reminds me of the joke. If the blackbox in a plane is indestructible why not make the whole plane out of it.
  • Foolish1 - Oct 29, 2009
    • Rank: not rated yet
    "It's fragile and brittle because people are afraid to let the software continue if they think there's something wrong with it"

    Afraid? Terrified is a better choice of words.
  • nkalanaga - Oct 29, 2009
    • Rank: not rated yet
    So how long will it be before someone hacks ClearView and uses it to install malicious "patches"? I'd rather my software died if it was compromised.
  • jgelt - Oct 29, 2009
    • Rank: not rated yet
    Bootable USB stick. Backup USB sticks.

    No sharing a computer, nothing on the computer when the stick is pulled. Nothing for malware to eat.
    Corruption or mere suspicion? Restore virgin image in 15 minutes.

    Invulnerable except to outright mugging.
    Let's get rid of the bloatware and get back to the one-use OS now, please!
  • malapropism - Oct 29, 2009
    • Rank: not rated yet
    So how long will it be before someone hacks ClearView and uses it to install malicious "patches"? I'd rather my software died if it was compromised.

    But it looks like they thought of this, the paper (section 4.1) states: "Infrastructure Attacks: Determine if attackers can subvert the ClearView patch generation and distribution mechanism to send out malicious patches. This paper omits the detailed results of this qualitative evaluation, but in summary the standard security measures already in place in the Determina commercial product (encryption, authentication, etc.) were judged to provide an acceptable level of protection against this class of attacks."

    They also say that they weren't trying to fix everything in one go - and using this is still a lot better than being hacked.
  • malapropism - Oct 29, 2009
    • Rank: not rated yet
    Bootable USB stick. Backup USB sticks.

    No sharing a computer, nothing on the computer when the stick is pulled. Nothing for malware to eat.
    Corruption or mere suspicion? Restore virgin image in 15 minutes.

    Invulnerable except to outright mugging.
    Let's get rid of the bloatware and get back to the one-use OS now, please!

    But not a very usable suggestion for a high-availability, clustered-server & SAN situation.
  • finitesolutions - Oct 30, 2009
    • Rank: 5 / 5 (1)
    Actually hackers, or anybody, are welcomed to hack my bank accounts :)
    It can not be worse than it is now.

October 29, 2009 all stories

Comments: 7

4.7 /5 (6 votes)
  • Stumble this up

  • Digg this

  • share this

  • hide
  • Related Stories

  • New trojan detected for Microsoft Word
    created May 22, 2006 | popularity not rated yet | comments 0
  • New tool improves productivity, quality when translating software
    created Feb 24, 2009 | popularity not rated yet | comments 0
  • IBM Debuts 'Grammar Checker' Approach to Catching Software Bugs
    created Jul 30, 2008 | popularity not rated yet | comments 0
  • Code breakthrough delivers safer computing
    created Sep 25, 2009 | popularity not rated yet | comments 0
  • SIIA warns of pirated software
    created Nov 28, 2005 | popularity not rated yet | comments 0



  • hide
  • Relevant PhysicsForums posts

  • Help with a camera choice
    created Nov 18, 2009
  • casio calculator that's similar to TI-89
    created Nov 08, 2009
  • Advice on what cell phone to get
    created Nov 08, 2009
  • Changing the language options on your phone.
    created Nov 03, 2009
  • More from Physics Forums - Computing & Technology

Other News

Hackers leak e-mails, stoke climate debate

Technology / Internet

created 9 hours ago | popularity 4.5 / 5 (15) | comments 8

(AP) -- Computer hackers have broken into a server at a well-respected climate change research center in Britain and posted hundreds of private e-mails and documents online - stoking debate over whether some scientists have ...


plug-in hybrid electric vehicle

Pulling the plug on hybrid myths

Technology / Energy

created Nov 19, 2009 | popularity 3.8 / 5 (12) | comments 17

(PhysOrg.com) -- Whether you call them myths, urban legends, fables or old wives' tales, there's a lot of misinformation out there about plug-in electric hybrid vehicles. These vehicles, abbreviated PHEVs, ...


UK police make 2 Trojan computer virus arrests

Technology / Internet

created Nov 18, 2009 | popularity 5 / 5 (1) | comments 10

(AP) -- A couple suspected of helping spread some of the Internet's most aggressive computer viruses has been arrested in the English city of Manchester, police said Wednesday.


A sign marks the entrance to IBM Corporate Headquarters

IBM makes Big Blue cloud

Technology / Software

created Nov 16, 2009 | popularity 2.9 / 5 (8) | comments 8

IBM on Monday announced it has created the world's largest business computing "cloud" capable of holding an amount of digital data on a par with 250 billion iTunes songs.


Google SPDY

Google's SPDY will speed up downloads

Technology / Internet

created Nov 16, 2009 | popularity 4.4 / 5 (16) | comments 7

(PhysOrg.com) -- As part of its effort to speed up the Web, Google is experimenting with SPDY, a new application layer protocol, that it hopes will speed up the conversation between browsers and Web servers ...