Iraklitos II — Secure Software Development Technologies

Project Code: 4/15/6
Funding programme: Special Management Programme for Education and Lifelong Learning - Action 11.74.11.01 - Iraklitos II research fellowships at the Athens University of Economics and Business
Funding Agency: Ministry of Education
Project type: RTD
Web site: http://irakleitos.aueb.gr/index.php/erevnitikoergo/det/mitropoulos
Starting date: 2010-09-01
Ending date: 2013-09-01
Total budget: 45,000 €

Contact: Dimitris Mitropoulos
Scientific coordinator: Diomidis Spinellis

Description

Code injection attacks are one of the most damaging class of attacks because: they can occur in different layers, like databases, native code, applications, libraries and others; and they span a wide range of security and privacy issues, like viewing sensitive information, destruction or modification of sensitive data, or even stopping the execution of the entire application. Our research attempts to prevent a wide class of such attacks in a novel way.

Publications

Journal Articles

    • Dimitris Mitropoulos, Vassilios Karakoidas, Panagiotis Louridas, and Diomidis Spinellis. Countering code injection attacks: a unified approach. Information Management and Computer Security, 19(3):177–194, 2011. Highly Commended Paper Award.

Conference Publications

    • Dimitris Mitropoulos, Vassilios Karakoidas, Panos Louridas, Georgios Gousios, and Diomidis Spinellis. Dismal code: studying the evolution of security bugs. In Proceedings of the LASER Workshop 2013, Learning from Authoritative Security Experiment Results, 37–48. Usenix Association, October 2013.

Magazine Articles

    • Dimitris Mitropoulos. Better safe than sorry: backup your backups. XRDS: Crossroads, The ACM Magazine for Students, 18(2):6–6, 2012.