Vulnerabilities in Bytecode Removed by Analysis, Nuanced Confinement and Diversification (VIBRANCE)

Abstract

The VIBRANCE tool starts with a vulnerable Java application and automatically hardens it against SQL injection, OS command injection, file path traversal, numeric errors, denial of service, and other attacks. For a large class of attacks, the protection added by VIBRANCE blocks the attacks and safely continues execution.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jun 01, 2015
Accession Number
ADA625741

Entities

People

  • Alessandro Coglio
  • Anca Browne
  • Arnaud Venet
  • Cordell Green
  • Daniel Willenson
  • Douglas Kramm
  • Douglas Smith
  • Eric Bush
  • Eric Mccarthy
  • Henny Sipma
  • Jeff Perkins
  • Jordan Eikenberry
  • Limei Gilham
  • Marcel Becker
  • Martin Rinard
  • Matthew C. Barry
  • Paolo Piselli
  • Stephen Fitzpatrick

Organizations

  • Kestrel Institute

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Air Force
  • Code Injection
  • Computer Languages
  • Computer Programming
  • Computer Programs
  • Computer Science
  • Computers
  • Cybersecurity
  • Database Management Systems
  • Denial Of Service Attack
  • Domain Specific Programming Languages
  • Object Code
  • Operating Systems
  • Programming Languages
  • Side Effects
  • Software Development
  • Test And Evaluation

Fields of Study

  • Computer science

Readers

  • Database Systems and Applications
  • Library and Information Science
  • Political Violence and Terrorism Studies.