Characteristic classification and correlation analysis of source-level vulnerabilities in the Linux kernel

Kwangsun Ko; Insook Jang; Yong Hyeog Kang; Jinseok Lee; Young Ik Eom

doi:10.1007/11596981_172

Characteristic classification and correlation analysis of source-level vulnerabilities in the Linux kernel

Kwangsun Ko
, Insook Jang
, Yong Hyeog Kang
, Jinseok Lee
, Young Ik Eom

Department of Computer Science and Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

1 Scopus citations

Abstract

Although studies regarding the classification and analysis of source-level vulnerabilities in operating systems are not direct and practical solutions to the exploits with which computer systems are attacked, it is important that these studies supply the elementary technology for the development of effective security mechanisms. Linux systems are widely used on the Internet and in intra-net environments. However, researches regarding the fundamental vulnerabilities in the Linux kernel have not been satisfactorily conducted. In this paper, characteristic classification and correlation analysis of source-level vulnerabilities in the Linux kernel, open to the public and listed on the Security Focus site for the 6 years from 1999 to 2004, are presented. This study will enable Linux kernel maintenance groups to understand the wide array of vulnerabilities, to analyze the characteristics of the attack abusing vulnerabilities, and to prioritize their development effort according to the impact of these vulnerabilities on the Linux systems.

Original language	English
Title of host publication	Computational Intelligence and Security - International Conference, CIS 2005, Proceedings
Pages	1149-1156
Number of pages	8
DOIs	https://doi.org/10.1007/11596981_172
State	Published - 2005
Event	International Conference on Computational Intelligence and Security, CIS 2005 - Xi'an, China Duration: 15 Dec 2005 → 19 Dec 2005

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	3802 LNAI
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	International Conference on Computational Intelligence and Security, CIS 2005
Country/Territory	China
City	Xi'an
Period	15/12/05 → 19/12/05

Access to Document

10.1007/11596981_172

Cite this

Ko, K., Jang, I., Kang, Y. H., Lee, J., & Eom, Y. I. (2005). Characteristic classification and correlation analysis of source-level vulnerabilities in the Linux kernel. In Computational Intelligence and Security - International Conference, CIS 2005, Proceedings (pp. 1149-1156). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 3802 LNAI). https://doi.org/10.1007/11596981_172

Ko, Kwangsun ; Jang, Insook ; Kang, Yong Hyeog et al. / Characteristic classification and correlation analysis of source-level vulnerabilities in the Linux kernel. Computational Intelligence and Security - International Conference, CIS 2005, Proceedings. 2005. pp. 1149-1156 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{c8e3267471b9477a8da8b12477ae9d0a,

title = "Characteristic classification and correlation analysis of source-level vulnerabilities in the Linux kernel",

abstract = "Although studies regarding the classification and analysis of source-level vulnerabilities in operating systems are not direct and practical solutions to the exploits with which computer systems are attacked, it is important that these studies supply the elementary technology for the development of effective security mechanisms. Linux systems are widely used on the Internet and in intra-net environments. However, researches regarding the fundamental vulnerabilities in the Linux kernel have not been satisfactorily conducted. In this paper, characteristic classification and correlation analysis of source-level vulnerabilities in the Linux kernel, open to the public and listed on the Security Focus site for the 6 years from 1999 to 2004, are presented. This study will enable Linux kernel maintenance groups to understand the wide array of vulnerabilities, to analyze the characteristics of the attack abusing vulnerabilities, and to prioritize their development effort according to the impact of these vulnerabilities on the Linux systems.",

author = "Kwangsun Ko and Insook Jang and Kang, \{Yong Hyeog\} and Jinseok Lee and Eom, \{Young Ik\}",

year = "2005",

doi = "10.1007/11596981\_172",

language = "English",

isbn = "3540308199",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "1149--1156",

booktitle = "Computational Intelligence and Security - International Conference, CIS 2005, Proceedings",

note = "International Conference on Computational Intelligence and Security, CIS 2005 ; Conference date: 15-12-2005 Through 19-12-2005",

}

Ko, K, Jang, I, Kang, YH, Lee, J & Eom, YI 2005, Characteristic classification and correlation analysis of source-level vulnerabilities in the Linux kernel. in Computational Intelligence and Security - International Conference, CIS 2005, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 3802 LNAI, pp. 1149-1156, International Conference on Computational Intelligence and Security, CIS 2005, Xi'an, China, 15/12/05. https://doi.org/10.1007/11596981_172

Characteristic classification and correlation analysis of source-level vulnerabilities in the Linux kernel. / Ko, Kwangsun; Jang, Insook; Kang, Yong Hyeog et al.
Computational Intelligence and Security - International Conference, CIS 2005, Proceedings. 2005. p. 1149-1156 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 3802 LNAI).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Characteristic classification and correlation analysis of source-level vulnerabilities in the Linux kernel

AU - Ko, Kwangsun

AU - Jang, Insook

AU - Kang, Yong Hyeog

AU - Lee, Jinseok

AU - Eom, Young Ik

PY - 2005

Y1 - 2005

N2 - Although studies regarding the classification and analysis of source-level vulnerabilities in operating systems are not direct and practical solutions to the exploits with which computer systems are attacked, it is important that these studies supply the elementary technology for the development of effective security mechanisms. Linux systems are widely used on the Internet and in intra-net environments. However, researches regarding the fundamental vulnerabilities in the Linux kernel have not been satisfactorily conducted. In this paper, characteristic classification and correlation analysis of source-level vulnerabilities in the Linux kernel, open to the public and listed on the Security Focus site for the 6 years from 1999 to 2004, are presented. This study will enable Linux kernel maintenance groups to understand the wide array of vulnerabilities, to analyze the characteristics of the attack abusing vulnerabilities, and to prioritize their development effort according to the impact of these vulnerabilities on the Linux systems.

AB - Although studies regarding the classification and analysis of source-level vulnerabilities in operating systems are not direct and practical solutions to the exploits with which computer systems are attacked, it is important that these studies supply the elementary technology for the development of effective security mechanisms. Linux systems are widely used on the Internet and in intra-net environments. However, researches regarding the fundamental vulnerabilities in the Linux kernel have not been satisfactorily conducted. In this paper, characteristic classification and correlation analysis of source-level vulnerabilities in the Linux kernel, open to the public and listed on the Security Focus site for the 6 years from 1999 to 2004, are presented. This study will enable Linux kernel maintenance groups to understand the wide array of vulnerabilities, to analyze the characteristics of the attack abusing vulnerabilities, and to prioritize their development effort according to the impact of these vulnerabilities on the Linux systems.

UR - https://www.scopus.com/pages/publications/33646842012

U2 - 10.1007/11596981_172

DO - 10.1007/11596981_172

M3 - Conference contribution

AN - SCOPUS:33646842012

SN - 3540308199

SN - 9783540308195

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 1149

EP - 1156

BT - Computational Intelligence and Security - International Conference, CIS 2005, Proceedings

T2 - International Conference on Computational Intelligence and Security, CIS 2005

Y2 - 15 December 2005 through 19 December 2005

ER -

Ko K, Jang I, Kang YH, Lee J, Eom YI. Characteristic classification and correlation analysis of source-level vulnerabilities in the Linux kernel. In Computational Intelligence and Security - International Conference, CIS 2005, Proceedings. 2005. p. 1149-1156. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/11596981_172

Characteristic classification and correlation analysis of source-level vulnerabilities in the Linux kernel

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this