Continuum: Finding Space and Time Vulnerabilities in Java Programs

Abstract

The Continuum project aimed to develop novel techniques to preemptively identify AC vulnerabilities in both the time and space domains. As part of this effort, a prototype implementation of these techniques was developed as part of a scalable, integrated platform that could be used by both expert and non-expert analysts on real software authored for the Java Virtual Machine (JVM). Continuum led to the development of new vulnerability detection methods that have been empirically shown to discover zero-day bugs in widely used software. We conclude the report by laying out promising directions for future research.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Oct 01, 2019
Accession Number
AD1082108

Entities

People

  • Christopher Kruegel
  • Engin Kirda
  • Giovanni Vigna
  • Manuel Egele
  • William Robertson

Organizations

  • Northeastern University

Tags

Communities of Interest

  • Autonomy
  • Cyber
  • Engineered Resilient Systems

DTIC Thesaurus Topics

  • Air Force
  • Air Force Research Laboratories
  • Artificial Intelligence
  • Assembly
  • Assembly Lines
  • Case Studies
  • Computer Programming
  • Computer Programs
  • Computers
  • Denial Of Service Attack
  • Detection
  • Device Drivers
  • Instruction Set Architecture
  • Models
  • Operating Systems
  • Platforms
  • Virtual Machines

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Database Systems and Applications
  • Systems Analysis and Design

Technology Areas

  • Space