Abstract

File-based <i>Time-of-Check to Time-of-Use</i> (TOCTOU) race conditions are a well-known type of security vulnerability. A wide variety of techniques have been proposed to detect, mitigate, avoid, and exploit these vulnerabilities over the past 35 years. However, despite these research efforts, TOCTOU vulnerabilities remain unsolved due to their non-deterministic nature and the particularities of the different filesystems involved in running vulnerable programs, especially in Unix-like operating system environments. In this paper, we present a systematic literature review on defense and attack techniques related to the file-based TOCTOU vulnerability. We apply a reproducible methodology to search, filter, and analyze the most relevant research proposals to define a global and understandable vision of existing solutions. The results of this analysis are finally used to discuss future research directions that can be explored to move towards a universal solution to this type of vulnerability.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Impact of findings from grey literature on the outcomes of systematic reviews on interventions to prevent obesity among children: a systematic review
Jessica Tyndall ... Tracy Merlin
JBI Library of Systematic Reviews | VOL. 10
Jessica Tyndall, et. al.Jessica Tyndall ... Tracy Merlin
01 Jan 2012
Evaluating the Science to Inform the Physical Activity Guidelines for Americans Midcourse Report
Alison Vaux-Bjerke ... Katrina L Piercy
Journal of Healthy Eating and Active Living | VOL. 3
Alison Vaux-Bjerke, et. al. Alison Vaux-Bjerke ... Katrina L Piercy
28 Aug 2023
Methods and Results Report - Evidence and consensus-based (S3) Guidelines for the Treatment of Actinic Keratosis -International League of Dermatological Societies in cooperation with the European Dermatology Forum.
R.N Werner ... R Erdmann
Journal of the European Academy of Dermatology and Venereology | VOL. 29
R.N Werner, et. al.R.N Werner ... R Erdmann
09 Sep 2015
A time of change.
Nutrition &amp; Dietetics | VOL. 77
01 Feb 2020
View more papers

More From: IEEE Access

Paper Title
Journal
Date
Author
A Deeper Look Into Remote Sensing Scene Image Misclassification by CNNs
Anas Tukur Balarabe ... Ivan Jordanov
IEEE Access | VOL. 12
Anas Tukur Balarabe, et. al.Anas Tukur Balarabe ... Ivan Jordanov
01 Jan 2024
DL-ADS: Improved Grey Wolf Optimization Enabled AE-LSTM Technique for Efficient Network Anomaly Detection in Internet of Thing Edge Computing
J Manokaran ... G Vairavel
IEEE Access | VOL. 12
J Manokaran, et. al.J Manokaran ... G Vairavel
01 Jan 2024
Applying Syntax-Prosody Mapping Hypothesis and Boundary-Driven Theory to Neural Sequence-to-Sequence Speech Synthesis
Kei Furukawa ... Sakriani Sakti
IEEE Access | VOL. 12
Kei Furukawa, et. al.Kei Furukawa ... Sakriani Sakti
01 Jan 2024
A Compact and Low Latency SPM Architecture for ECC Cryptosystems
Khalid Javeed ... Fadi Sibai
IEEE Access | VOL. -
Khalid Javeed, et. al.Khalid Javeed ... Fadi Sibai
01 Jan 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.