The C and C++ programming languages are notoriously insecure yet remain indispensable.
Developers therefore resort to a multi-pronged approach to find security issues before …

We present an architectural framework for systematically using automated diversity to
provide high assurance detection and disruption for large classes of attacks. The framework …

Consistent, high-quality coding standards improve software quality, reduce time-to-market,
promote teamwork, eliminate time wasted on inconsequential matters, and simplify …

Injecting binary code into a running program is a common form of attack. Most defenses
employ a “guard the doors” approach, blocking known mechanisms of code injection …

A buffer overflow attack is perhaps the most common attack used to compromise the security
of a host. This attack can be used to change the function return address and redirect …

This paper advocates the use of a monitor-and-recover programming paradigm to enhance
the reliability of software, and proposes an architectural design that allows software and …

The increasing reliance put on networked computer systems demands higher levels of
dependability. This is even more relevant as new threats and forms of attack are constantly …

软件和信息系统的高速发展在给人们生活带来诸多便利的同时, 也让更多的安全风险来到了我们
身边, 不法分子可以很方便的利用无处不在的网络和越来越自动化, 低门槛的攻击技术去获得 …

Programming languages such as C and C++ support variadic functions, ie, functions that
accept a variable number of arguments (eg, printf). While variadic functions are flexible, they …

Format-string bugs are a relatively common security vulnerability, and can lead to arbitrary
code execution. In collaboration with others, we designed and implemented a system to …