Institutional Repository
| static analysis of format string vulnerabilities | |
| Han Wei; Ren Mengfei; Tian Shuo; Ding Liping; He Yeping | |
| 2011 | |
| Conference Name | 1st ACIS International Symposium on Software and Network Engineering, SSNE 2011 |
| Source | Proceedings - 1st ACIS International Symposium on Software and Network Engineering, SSNE 2011 |
| Pages | 122-127 |
| Conference Date | December 19, 2011 - December 20, 2011 |
| Conference Place | Seoul, Korea, Republic of |
| Indexed Type | EI |
| ISBN | 9780769546315 |
| Department | (1) National Engineering Research Center for Fundamental Software Institute of Software Beijing China; (2) Graduate School Chinese Academy of Science Beijing China; (3) School of Information Science and Technology Shijiazhuang Tiedao University Hebei China; (4) International School of Software Wuhan University Hubei China |
| English Abstract | This paper presents a novel approach, based on static analysis, to detect format string vulnerabilities in C programs. Format string vulnerability is viewed as a finite state safety property. The analysis is expressed as a system of constraint describing how the safety state at one program point is related to the state at adjacent program points. Our analysis is inter-procedurally flow sensitive and intra-procedurally path sensitive. To avoid state space explosion in inter-procedural analysis, we use procedural summary instead of analyzing the called function holistically. The experimental results show that this method can effectively locate format string vulnerabilities in C programs. In comparison with other static approaches, ours can greatly reduce false positive. © 2011 IEEE.; This paper presents a novel approach, based on static analysis, to detect format string vulnerabilities in C programs. Format string vulnerability is viewed as a finite state safety property. The analysis is expressed as a system of constraint describing how the safety state at one program point is related to the state at adjacent program points. Our analysis is inter-procedurally flow sensitive and intra-procedurally path sensitive. To avoid state space explosion in inter-procedural analysis, we use procedural summary instead of analyzing the called function holistically. The experimental results show that this method can effectively locate format string vulnerabilities in C programs. In comparison with other static approaches, ours can greatly reduce false positive. © 2011 IEEE. |
| Keyword | c (Programming Language) Safety Engineering |
| Sponsorship | International Association for; Computer and Information Science (ACIS); Seoul National University |
| Language | 英语 |
| Content Type | 会议论文 |
| URI | http://ir.iscas.ac.cn/handle/311060/16298 |
| Collection | 中国科学院软件研究所 |
| Recommended Citation GB/T 7714 | Han Wei,Ren Mengfei,Tian Shuo,et al. static analysis of format string vulnerabilities[C],2011:122-127. |
| Files in This Item: | There are no files associated with this item. | |||||
Items in the repository are protected by copyright, with all rights reserved, unless otherwise indicated.
Edit Comment