Title :
Exploiting Unix File-System Races via Algorithmic Complexity Attacks
Author :
Cai, Xiang ; Gui, Yuwei ; Johnson, Rob
Author_Institution :
Stony Brook Univ., Stony Brook, NY, USA
Abstract :
We defeat two proposed Unix file-system race condition defense mechanisms. First, we attack the probabilistic defense mechanism of Tsafrir, et al., published at USENIX FAST 2008. We then show that the same attack breaks the kernel-based dynamic race detector of Tsyrklevich and Yee, published at USENIX Security 2003. We then argue that all kernel-based dynamic race detectors must have a model of the programs they protect or provide imperfect protection. The techniques we develop for performing these attacks work on multiple Unix operating systems, on uni- and multi-processors, and are useful for exploiting most Unix file-system races. We conclude that programmers should use provably-secure methods for avoiding race conditions when accessing the file-system.
Keywords :
Unix; file organisation; security of data; USENIX FAST 2008; Unix file-system race condition defense mechanisms; Unix operating systems; algorithmic complexity attacks; kernel-based dynamic race detector; Clocks; Computer bugs; Detectors; Kernel; Linux; Operating systems; Privacy; Programming profession; Protection; Security;
Conference_Titel :
Security and Privacy, 2009 30th IEEE Symposium on
Conference_Location :
Berkeley, CA
Print_ISBN :
978-0-7695-3633-0
