Text Size
- Home
-
News
Advanced computing news from Communications of the ACM, other ACM resources, and from around the Web.
- Blogs
- Opinion
-
Browse by Subject
Recent articles from Communications organized into categories that encompass the broad scope of computing.
-
Magazine Archive
-
Careers
Jump-start your career with information on trends, opportunities and jobs – in both industry and academia.
- ACM Resources
-
Subscribe
Receive the benefits of ACM membership with a subscription to its flagship publication, Communications of the ACM.
This Article
ACM TechNews
Software That Fixes Itself
Massachusetts Institute of Technology researchers led by professor Martin Rinard have developed ClearView, software capable of finding and fixing certain types of software bugs within a few minutes. Rinard, who presented the software at ACM's recent Symposium on Operating System Principles, says the goal is to create an "immortal, invulnerable program."
ClearView can operate without assistance from humans and without access to a program's underlying source code. By observing a program's normal behavior and creating a set of rules, ClearView can detect certain errors, including those caused by malicious programs. ClearView detects any anomalies that violate the rules and provides several potential patches that would force the software to follow the rules. The patches are applied directly to the binary level, bypassing the source code. ClearView analyzes the possible solutions to decide which ones are the most likely to work and installs the top candidates and tests their effectiveness. If additional rules are violated or the patch crashes the system, ClearView rejects those solutions and finds another.
The researchers say the system is particularly effective on a group of machines running the same software. They tested ClearView by installing it on a group of computers running Firefox and using an independent team to attack the Web browser using 10 different approaches. ClearView successfully blocked all of the attacks by detecting the anomalies and terminating the application before the attack could take effect.
From Technology Review
View Full Article
Abstracts Copyright © 2009 Information Inc., Bethesda, Maryland, USA 
Sign In To Comment On This Article
Create A Web Account
If you are an ACM member, Communications subscriber, Digital Library subscriber, or use your institution's subscription, please set up a web account to access comments, premium content and additional site features.
If you are a SIG member or member of the general public, you may set up a web account to comment on free articles and sign up for email alerts.
Tools For Readers
Related ACM Resources
Conferences:
- Micro-42 : 42nd International Symposium on Microarchitecture - December 12, 2009 – December 16, 2009; New York, NY …
Books:
- Microsoft® VBScript Step by Step - Ed Wilson
Courses:
- Security Awareness (Third Edition) - This course is intended for beginners and intermediate users who want to increase their understanding of information security issues and practices. (Duration: 126 minutes)
About Communications |
Join ACM 
|
Renew |
Subscribe |
Sign In |
For Authors |
For Advertisers |
Privacy |
Site Map |
Help |
Contact Us
Copyright © 2009 by the ACM. All rights reserved.