Monitoring Instruction-Based Intrusion Detection and Self-Healing System
Anomaly-based Intrusion Prevention Systems (IPSs) currently protect systems from zero-day attacks. However, since they either only inform administrators about the intrusions and/or just stop services or systems, they cannot stably continue services until the vulnerabilities are fixed by security patches. So Self-Healing Systems (SHSs) are needed because they continue to safely execute services even if the applications have vulnerabilities. However, since most SHSs rely on execution flows, e.g., system-call and library-function sequences, these systems cannot recover from non-control data attacks.