About: ReDoS

Facets (new session)
Description
Metadata
Settings
- Rule:
- Inverse Functional Properties:
- "Same As":

About: ReDoS Goto Sponge NotDistinct Permalink

An Entity of Type : yago:WikicatRegularExpressions, within Data Space : dbpedia.org associated with source document(s)
QRcode icon

http://dbpedia.org/describe/?url=http%3A%2F%2Fdbpedia.org%2Fresource%2FReDoS

A regular expression denial of service (ReDoS)is an algorithmic complexity attack that produces a denial-of-service by providing a regular expression and/or an input that takes a long time to evaluate. The attack exploits the fact that many regular expression implementations have super-linear worst-case complexity; on certain regex-input pairs, the time taken can grow polynomially or exponentially in relation to the input size. An attacker can thus cause a program to spend substantial time by providing a specially crafted regular expression and/or input. The program will then slow down or become unresponsive.

Attributes	Values
rdf:type	yago:Abstraction100002137 yago:Act100030358 yago:Activity100407535 yago:Appearance104673965 yago:Attack100972621 yago:Attribute100024264 yago:Countenance104679549 yago:Event100029378 yago:Expression104679738 yago:Operation100955060 yago:PsychologicalFeature100023100 yago:Quality104723816 yago:YagoPermanentlyLocatedEntity military conflict yago:WikicatDenial-of-serviceAttacks yago:WikicatRegularExpressions
rdfs:label	ReDoS (en) ReDoS (pt)
rdfs:comment	A regular expression denial of service (ReDoS)is an algorithmic complexity attack that produces a denial-of-service by providing a regular expression and/or an input that takes a long time to evaluate. The attack exploits the fact that many regular expression implementations have super-linear worst-case complexity; on certain regex-input pairs, the time taken can grow polynomially or exponentially in relation to the input size. An attacker can thus cause a program to spend substantial time by providing a specially crafted regular expression and/or input. The program will then slow down or become unresponsive. (en) Um Ataque de negação de serviço por uso de expressão regular (também conhecido como ReDoS, um acrônimo em inglês para Regular expression Denial of Service)é um ataque de complexidade algorítmica que produz uma negação-de-serviço, fornecendo uma expressão regular que leva muito tempo para ser avaliada. O ataque explora o fato de que a maioria das implementações de expressões regulares têm custo de tempo exponencial no pior caso: o tempo pode crescer exponencialmente em relação ao tamanho da entrada. Um invasor pode, portanto, fazer um programa passar uma quantidade efetivamente infinita de tempo processando fornecendo uma expressão regular como tal, deixando o programa lento ou o tornando irresponsivo. (pt)
dcterms:subject	Algorithmic complexity attacks Pattern matching Regular expressions Denial-of-service attacks
Wikipage page ID	26976028 (xsd:integer)
Wikipage revision ID	1111779206 (xsd:integer)
Link from a Wikipage to another Wikipage	Nondeterministic finite-state automaton Denial-of-service attack Deterministic finite automaton Algorithmic complexity attacks Pattern matching Regular expression Cyberwarfare Intrusion detection system Worst-case complexity Compiler Low Orbit Ion Cannon Regular expressions Time complexity Lazy evaluation Algorithmic complexity attack EXPTIME Finite-state automaton Anonymous (group) Denial-of-service attacks Computer language Denial-of-service dbr:E-mail_scanner
Link from a Wikipage to an external page	http://regexlib.com/REDetails.aspx%3Fregexp_id=1757 http://www.computerbytesman.com/redos https://github.com/EnDe/ReDoS/ https://github.com/NicolaasWeideman/RegexStaticAnalysis http://www.cs.bham.ac.uk/~hxt/research/rxxr.shtml http://swtch.com/~rsc/regexp/regexp1.html http://www.owasp.org/index.php/OWASP_Validation_Regex_Repository http://web.nvd.nist.gov/view/vuln/detail%3FvulnId=CVE-2009-3275 http://web.nvd.nist.gov/view/vuln/detail%3FvulnId=CVE-2009-3276 http://web.nvd.nist.gov/view/vuln/detail%3FvulnId=CVE-2009-3277
sameAs	ReDoS ReDoS ReDoS ReDoS ReDoS
dbp:wikiPageUsesTemplate	dbt:Reflist dbt:Red
has abstract	A regular expression denial of service (ReDoS)is an algorithmic complexity attack that produces a denial-of-service by providing a regular expression and/or an input that takes a long time to evaluate. The attack exploits the fact that many regular expression implementations have super-linear worst-case complexity; on certain regex-input pairs, the time taken can grow polynomially or exponentially in relation to the input size. An attacker can thus cause a program to spend substantial time by providing a specially crafted regular expression and/or input. The program will then slow down or become unresponsive. (en) Um Ataque de negação de serviço por uso de expressão regular (também conhecido como ReDoS, um acrônimo em inglês para Regular expression Denial of Service)é um ataque de complexidade algorítmica que produz uma negação-de-serviço, fornecendo uma expressão regular que leva muito tempo para ser avaliada. O ataque explora o fato de que a maioria das implementações de expressões regulares têm custo de tempo exponencial no pior caso: o tempo pode crescer exponencialmente em relação ao tamanho da entrada. Um invasor pode, portanto, fazer um programa passar uma quantidade efetivamente infinita de tempo processando fornecendo uma expressão regular como tal, deixando o programa lento ou o tornando irresponsivo. (pt)
gold:hypernym	Attack
prov:wasDerivedFrom	wikipedia-en:ReDoS?oldid=1111779206&ns=0
page length (characters) of wiki page	12473 (xsd:nonNegativeInteger)
foaf:isPrimaryTopicOf	wikipedia-en:ReDoS
is Link from a Wikipage to another Wikipage of	LAND R-U-Dead-Yet Google Code Search Redos Low Orbit Ion Cannon Stacheldraht Hardware acceleration Cybersecurity information technology list Anonymous (group) XML denial-of-service attack Ping of death BASHLITE Slowloris (computer security) Catastrophic backtracking Regular expression Denial of Service Regular expression Denial of Service - ReDoS Regular expression Denial of Service – ReDoS Regular expression denial of service Evil regex
is Wikipage redirect of	Redos Catastrophic backtracking Regular expression Denial of Service Regular expression Denial of Service - ReDoS Regular expression Denial of Service – ReDoS Regular expression denial of service Evil regex
is foaf:primaryTopic of	wikipedia-en:ReDoS

Faceted Search & Find service v1.17_git139 as of Feb 29 2024

Alternative Linked Data Documents: ODE Content Formats:

RDF

ODATA

Microdata

About

OpenLink Virtuoso version 08.03.3331 as of Sep 2 2024, on Linux (x86_64-generic-linux-glibc212), Single-Server Edition (61 GB total memory, 49 GB memory in use)
Data on this page belongs to its respective rights holders.
Virtuoso Faceted Browser Copyright © 2009-2024 OpenLink Software