Scargos: Towards Automatic Vulnerability Distribution
Florian Rhinow, Michael Clear
2015
Abstract
Recent work has suggested automated approaches to vulnerability distribution, but their usage has been limited to local networks and memory corruption detection techniques and has precluded custom vulnerability response processes. We present Scargos, a novel approach to automate the distribution and verification of vulnerabilities across the internet, while allowing for automatic, custom countermeasures without the need to trust a central authority. By leveraging collaborative detection, vulnerability reports can be contributed by anybody and are announced to an open network by using packet-based self-certifying alerts (SCA), which are a proof of the existence of a vulnerability by capturing the original, unmodified attack. We show that our approach allows for detection of previously unknown attacks, while an entire life cycle including distribution and verification is achieved on average in under 2 seconds.
DownloadPaper Citation
in Harvard Style
Rhinow F. and Clear M. (2015). Scargos: Towards Automatic Vulnerability Distribution . In Proceedings of the 12th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2015) ISBN 978-989-758-117-5, pages 369-376. DOI: 10.5220/0005566203690376
in Bibtex Style
@conference{secrypt15,
author={Florian Rhinow and Michael Clear},
title={Scargos: Towards Automatic Vulnerability Distribution},
booktitle={Proceedings of the 12th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2015)},
year={2015},
pages={369-376},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005566203690376},
isbn={978-989-758-117-5},
}
in EndNote Style
TY - CONF
JO - Proceedings of the 12th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2015)
TI - Scargos: Towards Automatic Vulnerability Distribution
SN - 978-989-758-117-5
AU - Rhinow F.
AU - Clear M.
PY - 2015
SP - 369
EP - 376
DO - 10.5220/0005566203690376