语义层次的协议格式提取方法
TP393.08; 现有协议格式提取方法在语法层次对程序执行轨迹进行分析,字段识别结果可能存在冗余和冲突。为了提高字段识别准确率,提出了一种语义层次的协议格式提取方法。方法首先将执行轨迹中的二进制指令转换为语义等价的中间语言形式,并通过细粒度的动态污点分析跟踪字段语义解析过程,在此基础上,依据字段的语义不可分割性,利用语义层次的字段识别策略实现了协议格式提取。测试结果表明,该方法具有较高的识别精度和较低的分析复杂度。...
Saved in:
| Published in | 通信学报 no. 10; pp. 162 - 173 |
|---|---|
| Main Authors | , , , |
| Format | Journal Article |
| Language | Chinese |
| Published |
解放军理工大学 指挥信息系统学院,江苏 南京,210007
2013
|
| Subjects | |
| Online Access | Get full text |
| ISSN | 1000-436X |
| DOI | 10.3969/j.issn.1000-436x.2013.10.019 |
Cover
| Abstract | TP393.08; 现有协议格式提取方法在语法层次对程序执行轨迹进行分析,字段识别结果可能存在冗余和冲突。为了提高字段识别准确率,提出了一种语义层次的协议格式提取方法。方法首先将执行轨迹中的二进制指令转换为语义等价的中间语言形式,并通过细粒度的动态污点分析跟踪字段语义解析过程,在此基础上,依据字段的语义不可分割性,利用语义层次的字段识别策略实现了协议格式提取。测试结果表明,该方法具有较高的识别精度和较低的分析复杂度。 |
|---|---|
| AbstractList | TP393.08; 现有协议格式提取方法在语法层次对程序执行轨迹进行分析,字段识别结果可能存在冗余和冲突。为了提高字段识别准确率,提出了一种语义层次的协议格式提取方法。方法首先将执行轨迹中的二进制指令转换为语义等价的中间语言形式,并通过细粒度的动态污点分析跟踪字段语义解析过程,在此基础上,依据字段的语义不可分割性,利用语义层次的字段识别策略实现了协议格式提取。测试结果表明,该方法具有较高的识别精度和较低的分析复杂度。 |
| Abstract_FL | Present methods for protocol format extraction analyze the execution traces of programs at syntax level, which leads to redundancy and conflict in the results of field identification. In order to improve the accuracy of field identifica-tion, a semantic level method was proposed for protocol format extraction. The method firstly translated the binary in-structions into equivalent intermediate language, and then tracked the parsing process of field semantics through fine-grained dynamic taint analysis. Further, it extracted protocol format using semantic level policies of field identifica-tion, based on the semantic indivisibility of fields. Experimental results show that the proposed method can achieve high identification accuracy with low complexity. |
| Author | 吴礼发 洪征 周振吉 潘璠 |
| AuthorAffiliation | 解放军理工大学 指挥信息系统学院,江苏 南京,210007 |
| AuthorAffiliation_xml | – name: 解放军理工大学 指挥信息系统学院,江苏 南京,210007 |
| Author_FL | ZHOU Zhen-ji PAN Fan WU Li-fa HONG Zheng |
| Author_FL_xml | – sequence: 1 fullname: PAN Fan – sequence: 2 fullname: HONG Zheng – sequence: 3 fullname: ZHOU Zhen-ji – sequence: 4 fullname: WU Li-fa |
| Author_xml | – sequence: 1 fullname: 潘璠 – sequence: 2 fullname: 洪征 – sequence: 3 fullname: 周振吉 – sequence: 4 fullname: 吴礼发 |
| BookMark | eNo1j79LAzEcxTNUsNb-F4rTxW-Su-QySvEXFLp0cCtJmkiLpGAUbxYXBzkXO3TS3VbEqdA_x4v9MzxRp8d7PN7js4UafuItQjsEMJNc7o_xKASPCQAkKeMFpkBYbTEQ2UDN__xsE7VDGGnICBMcGGmivfXb_HN5X73fxteXr9ld9VCuF4v4vKpWZSwfq3Iap8v48bSNNpy6CLb9py3UPzrsd06Sbu_4tHPQTUzGZZJbQ4SGlAspzJALTehQQZ4ZLp0DlRmdC0VTTTl30ihLFVUgwDkJpm5Z1kK7v7M3yjvlzwfjyfWlrw8HV0Whf6hqFiLZN32xVEQ |
| ClassificationCodes | TP393.08 |
| ContentType | Journal Article |
| Copyright | Copyright © Wanfang Data Co. Ltd. All Rights Reserved. |
| Copyright_xml | – notice: Copyright © Wanfang Data Co. Ltd. All Rights Reserved. |
| DBID | 2B. 4A8 92I 93N PSX TCJ |
| DOI | 10.3969/j.issn.1000-436x.2013.10.019 |
| DatabaseName | Wanfang Data Journals - Hong Kong WANFANG Data Centre Wanfang Data Journals 万方数据期刊 - 香港版 China Online Journals (COJ) China Online Journals (COJ) |
| DatabaseTitleList | |
| DeliveryMethod | fulltext_linktorsrc |
| DocumentTitle_FL | Protocol format extraction at semantic level |
| EndPage | 173 |
| ExternalDocumentID | txxb201310019 |
| GrantInformation_xml | – fundername: 国家自然科学基金资助项目; 江苏省自然科学基金资助项目; 军用网络技术实验室创新开放基金资助项目Foundation Items:The National Natural Science Foundation of China; The Natural Science Foundation of Jiangsu Province; The Opening Foundation of Laboratory of Military Network Technology funderid: (61070173); (BK2011115); (61070173); (BK 2011115); The Opening Foundation of Laboratory of Military Network Technology |
| GroupedDBID | -0Y 2B. 4A8 92I 93N ALMA_UNASSIGNED_HOLDINGS CCEZO CUBFJ GROUPED_DOAJ PSX TCJ |
| ID | FETCH-LOGICAL-c569-8ec17b046797cd67b12da085c69ff0a5cb87a24b266f9cae2a2a070ff90c85ce3 |
| ISSN | 1000-436X |
| IngestDate | Thu May 29 03:59:51 EDT 2025 |
| IsPeerReviewed | false |
| IsScholarly | true |
| Issue | 10 |
| Keywords | 协议逆向工程 dynamic taint analysis 中间语言 protocol format extraction intermediate language 协议格式提取 protocol reverse engineering 动态污点分析 |
| Language | Chinese |
| LinkModel | OpenURL |
| MergedId | FETCHMERGED-LOGICAL-c569-8ec17b046797cd67b12da085c69ff0a5cb87a24b266f9cae2a2a070ff90c85ce3 |
| PageCount | 12 |
| ParticipantIDs | wanfang_journals_txxb201310019 |
| PublicationCentury | 2000 |
| PublicationDate | 2013 |
| PublicationDateYYYYMMDD | 2013-01-01 |
| PublicationDate_xml | – year: 2013 text: 2013 |
| PublicationDecade | 2010 |
| PublicationTitle | 通信学报 |
| PublicationTitle_FL | Journal on Communications |
| PublicationYear | 2013 |
| Publisher | 解放军理工大学 指挥信息系统学院,江苏 南京,210007 |
| Publisher_xml | – name: 解放军理工大学 指挥信息系统学院,江苏 南京,210007 |
| SSID | ssib051376031 ssj0002912165 ssib058759023 ssib001102965 ssib023646527 ssib023168036 ssib036439991 ssib050281523 ssib000968473 |
| Score | 1.9766717 |
| Snippet | TP393.08; 现有协议格式提取方法在语法层次对程序执行轨迹进行分析,字段识别结果可能存在冗余和冲突。为了提高字段识别准确率,提出了一种语义层次的协议格式提取方法。方... |
| SourceID | wanfang |
| SourceType | Aggregation Database |
| StartPage | 162 |
| Title | 语义层次的协议格式提取方法 |
| URI | https://d.wanfangdata.com.cn/periodical/txxb201310019 |
| hasFullText | 1 |
| inHoldings | 1 |
| isFullTextHit | |
| isPrint | |
| journalDatabaseRights | – providerCode: PRVHPJ databaseName: ROAD: Directory of Open Access Scholarly Resources issn: 1000-436X databaseCode: M~E dateStart: 19800101 customDbUrl: isFulltext: true dateEnd: 99991231 titleUrlDefault: https://road.issn.org omitProxy: true ssIdentifier: ssib058759023 providerName: ISSN International Centre |
| link | http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwnV1LaxRBEB5iBPEiiorPkEMKD2HjdM_0TNexZzNL8CAIEXIL89TTCrqBkIMH8eJB1os5eNK7RsRTID_HXfMzrKqd3Z0V8QVL09tdXVPVNTP19Uz1lOet6UphXUdRJ_bzkBYotd_JdV526ionOJBlQVlKtMX9aOtheG_H7CydedCKWtob5BvFwS_3lfyPVamN7Mq7ZP_BsjOm1EB1si-VZGEq_8rGkFpwPXCbkIaQIFiE1ECiwGpII3BdcArSGNCBDbnLboLtyaiUf0zjQ9KVUV3pirhEX4ipEnELlcScKkkAk1yVUzgLKUqohBMBenI4w_I4GWgdODM1qTDYBLQikaYjL_SE4JzIkYJV8x4DqMBZ4dZlZbnFB4sLJD6PJ7YubLRh2VX7icZkK6qcfaI_0QaiW8hH5BFUT0Q0n-ssCdEY0Sdk-qli640sNp4KZVraU4sSMWOerUQ4Uom91sQgIILTdHaL5kp6LdiExF5vzISxMHVsRN3V_H4kbjkQ3qkfBpKdcXbt-C0PoRrnMwEbapLH5Wc_FmCE4seY58aU5z5HIgYbHIzYuJnFL4UP9vdzpuDPauEZ76zmR1Qczfo8ba9YCY-0t1L7GucvujXnMSNQM_8fhZHRM4QaMIDF-eeVDMFTQoAzfkZxkNX8xbKh5TA2aakEHGlUWkmC19lMnfPWGpXv_k5h2VXXr7P-oxYA3L7oXWhWbqtuchle8pYOHl_27px-_vTt-NXoy4vxxw_f370cvR6eHh2N35-MTobj4ZvR8HB8eDz--vaKt91Lt7tbnSb3SKcwEXZsVag49wlFYFyUUZwrXWa0OikiurP5mSlyG2c6zAne1lhklc50Rs6zrtEviKoKrnrL_Sf96pq3imUc24JmzmZRaMsqw7yOsQgJWtvaZMV1b6XRa7e5tTzbXbDkjT8R3PTOa0nSwg8Gb3nLg6d71W2CyoN8RYz_Ay0xgt4 |
| linkProvider | ISSN International Centre |
| openUrl | ctx_ver=Z39.88-2004&ctx_enc=info%3Aofi%2Fenc%3AUTF-8&rfr_id=info%3Asid%2Fsummon.serialssolutions.com&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Ajournal&rft.genre=article&rft.atitle=%E8%AF%AD%E4%B9%89%E5%B1%82%E6%AC%A1%E7%9A%84%E5%8D%8F%E8%AE%AE%E6%A0%BC%E5%BC%8F%E6%8F%90%E5%8F%96%E6%96%B9%E6%B3%95&rft.jtitle=%E9%80%9A%E4%BF%A1%E5%AD%A6%E6%8A%A5&rft.au=%E6%BD%98%E7%92%A0&rft.au=%E6%B4%AA%E5%BE%81&rft.au=%E5%91%A8%E6%8C%AF%E5%90%89&rft.au=%E5%90%B4%E7%A4%BC%E5%8F%91&rft.date=2013&rft.pub=%E8%A7%A3%E6%94%BE%E5%86%9B%E7%90%86%E5%B7%A5%E5%A4%A7%E5%AD%A6+%E6%8C%87%E6%8C%A5%E4%BF%A1%E6%81%AF%E7%B3%BB%E7%BB%9F%E5%AD%A6%E9%99%A2%2C%E6%B1%9F%E8%8B%8F+%E5%8D%97%E4%BA%AC%2C210007&rft.issn=1000-436X&rft.issue=10&rft.spage=162&rft.epage=173&rft_id=info:doi/10.3969%2Fj.issn.1000-436x.2013.10.019&rft.externalDocID=txxb201310019 |
| thumbnail_s | http://utb.summon.serialssolutions.com/2.0.0/image/custom?url=http%3A%2F%2Fwww.wanfangdata.com.cn%2Fimages%2FPeriodicalImages%2Ftxxb%2Ftxxb.jpg |