基于污点状态空间的脆弱性可疑点定位方法
针对现有方法在定位效能和适应性方面的不足,提出一种基于污点状态空间的脆弱性可疑点定位方法,在动态污点分析的框架下,建模扩展污点状态机模型,通过离线轨迹文件分析指令执行时的污点状态迁移,同时设计了多类非安全迁移规则,检测并定位脆弱性可疑点。构造原型系统并进行测试的结果表明该方法能在未触发脆弱性的条件下较完备和快速地定位多类脆弱性可疑点。...
Saved in:
| Published in | 计算机应用研究 Vol. 32; no. 1; pp. 232 - 235 |
|---|---|
| Main Author | |
| Format | Journal Article |
| Language | Chinese |
| Published |
江南计算技术研究所,江苏无锡,214083
2015
|
| Subjects | |
| Online Access | Get full text |
| ISSN | 1001-3695 |
| DOI | 10.3969/j.issn.1001-3695.2015.01.053 |
Cover
| Summary: | 针对现有方法在定位效能和适应性方面的不足,提出一种基于污点状态空间的脆弱性可疑点定位方法,在动态污点分析的框架下,建模扩展污点状态机模型,通过离线轨迹文件分析指令执行时的污点状态迁移,同时设计了多类非安全迁移规则,检测并定位脆弱性可疑点。构造原型系统并进行测试的结果表明该方法能在未触发脆弱性的条件下较完备和快速地定位多类脆弱性可疑点。 |
|---|---|
| Bibliography: | 51-1196/TP In terms of the low performance and weak adaptability of existing locating methods, this paper proposed a new method based on taint state space for suspicious vulnerability locating, this method modeled extended taint state machine model under dynamic taint analysis framework, analysed taint state transition when instruction was executed through off-line trace file, designed various unsecured transition rules for detecting and locating suspicious vulnerability. This paper implemented a prototype system and evaluated with many samples. The results prove that the method can completely and rapidly locating many types of suspicious vulnerability under certain conditions that not triggering the vulnerability. SHI Da-wei, SHI Zhi-gang, QIN Xiao-jun (Jiangnan Institute of Computing Technology, 1Vuxi Jiangsn 214083, China) taint state space; suspicious vulnerability; dynamic taint analysis; state transition |
| ISSN: | 1001-3695 |
| DOI: | 10.3969/j.issn.1001-3695.2015.01.053 |