中国科学院软件研究所机构知识库
Advanced  
ISCAS OpenIR  > 软件所图书馆  > 期刊论文
Subject: Computer Science (provided by Thomson Reuters)
Title:
基于可回溯动态污点分析的攻击特征生成方法
Alternative Title: attack signature generation by traceable dynamic taint analysis
Author: 刘豫 ; 聂眉宁 ; 苏璞睿 ; 冯登国
Keyword: 恶意代码 ; 攻击特征生成 ; 动态污点分析 ; 攻击路径
Source: 通信学报
Issued Date: 2012
Volume: 33, Issue:5, Pages:21-28
Indexed Type: CNKI ; CSCD ; EI
Department: 中国科学院软件研究所信息安全国家重点实验室;
Sponsorship: 国家自然科学基金资助项目(61073179,60703076)|中国科学院知识创新工程基金资助项目
Abstract: 现有黑盒或白盒的攻击特征生成方法面临样本采集困难、自动化程度较低、依赖源代码等问题。为此提出了一种基于可回溯动态污点分析的攻击特征生成方法,通过监控进程动态执行流程,提取与攻击输入相关的操作序列和约束条件,重建特征执行环境并添加判定语句,生成图灵机式的攻击特征。构造原型系统并进行测试的结果表明该方法能快速生成简洁高效的攻击特征。
English Abstract: Most of known attack signature generation systems took either black-box method or white-box method,both of which were limited in several aspects,such as costing a long time to capture sufficient samples,demanding arduous manual analysis and requiring source code of the vulnerable program.An attack signature generation method based on an innovative traceable dynamic taint analysis framework was proposed.By monitoring the vulnerable process execution,the executing trace and the constrain conditions exactly related to input data exploiting the vulnerability was extracted.Finally,by restoring the execution context and supplementing the determinant statements an executable Turing machine signature was attained.A prototype system was implemented and evaluated with different attack samples,which proved that the proposed method was able to generate accurate attack signature fast.
Language: 中文
Citation statistics:
Content Type: 期刊论文
URI: http://ir.iscas.ac.cn/handle/311060/15375
Appears in Collections:软件所图书馆_期刊论文

Files in This Item:

There are no files associated with this item.


Recommended Citation:
刘豫,聂眉宁,苏璞睿,等. 基于可回溯动态污点分析的攻击特征生成方法[J]. 通信学报,2012-01-01,33(5):21-28.
Service
Recommend this item
Sava as my favorate item
Show this item's statistics
Export Endnote File
Google Scholar
Similar articles in Google Scholar
[刘豫]'s Articles
[聂眉宁]'s Articles
[苏璞睿]'s Articles
CSDL cross search
Similar articles in CSDL Cross Search
[刘豫]‘s Articles
[聂眉宁]‘s Articles
[苏璞睿]‘s Articles
Related Copyright Policies
Null
Social Bookmarking
Add to CiteULike Add to Connotea Add to Del.icio.us Add to Digg Add to Reddit
所有评论 (0)
暂无评论
 
评注功能仅针对注册用户开放,请您登录
您对该条目有什么异议,请填写以下表单,管理员会尽快联系您。
内 容:
Email:  *
单位:
验证码:   刷新
您在IR的使用过程中有什么好的想法或者建议可以反馈给我们。
标 题:
 *
内 容:
Email:  *
验证码:   刷新

Items in IR are protected by copyright, with all rights reserved, unless otherwise indicated.

 

 

Valid XHTML 1.0!
Copyright © 2007-2020  中国科学院软件研究所 - Feedback
Powered by CSpace