ISCAS OpenIR
Heuristic path pruning algorithm based on error handling pattern recognition in detecting vulnerability
Chen, Dong (1); Zhang, Yang (1); Cheng, Liang (1); Deng, Yi (1); Sun, Xiaoshan (1)
2013
会议名称2013 IEEE 37th Annual Computer Software and Applications Conference Workshops, COMPSACW 2013
页码95-100
会议日期July 22, 2013 - July 26, 2013
会议地点Kyoto, Japan
收录类别CPCI ; EI
出版地IEEE Computer Society, 2001 L Street N.W., Suite 700, Washington, DC 20036-4928, United States
ISSN7303157
ISBN9780769549873
部门归属(1) Institute of Software, Chinese Academy of Sciences, Beijing, China
摘要Using symbolic execution in path sensitive detection of software vulnerabilities develop quickly recently. It has a lot of application and research progress. However, symbolic execution still suffers from the scalability problem in practice, especially when applied to large scale or very complex programs. In this paper, we propose a new heuristic path pruning algorithm based on non-fatal error handling(NFEH) pattern recognition. Firstly, it use three patterns to recognize NFEH module in binary code and then stop analyzing NFEH branches when using symbolic execution. To demonstrate the effectiveness of this new approach, we have implemented a prototype tool PrunEbt based on a binary static integer vulnerability detecting tool (Statictaint). Experimental results are quite encouraging. PrunEbt can effectively recognize NFEH modules in binary program, significantly reduce the search space and have no omissions of true vulnerabilities. At last, it has detected one zero-day integer vulnerability in widely used image recognition library Libpng v1.5.13. © 2013 IEEE.; Using symbolic execution in path sensitive detection of software vulnerabilities develop quickly recently. It has a lot of application and research progress. However, symbolic execution still suffers from the scalability problem in practice, especially when applied to large scale or very complex programs. In this paper, we propose a new heuristic path pruning algorithm based on non-fatal error handling(NFEH) pattern recognition. Firstly, it use three patterns to recognize NFEH module in binary code and then stop analyzing NFEH branches when using symbolic execution. To demonstrate the effectiveness of this new approach, we have implemented a prototype tool PrunEbt based on a binary static integer vulnerability detecting tool (Statictaint). Experimental results are quite encouraging. PrunEbt can effectively recognize NFEH modules in binary program, significantly reduce the search space and have no omissions of true vulnerabilities. At last, it has detected one zero-day integer vulnerability in widely used image recognition library Libpng v1.5.13. © 2013 IEEE.
关键词Symbolic Execution Path Pruning Error Handling Binary Code Vulnerability Detection
语种英语
内容类型会议论文
URI标识http://ir.iscas.ac.cn/handle/311060/16542
专题中国科学院软件研究所
推荐引用方式
GB/T 7714
Chen, Dong ,Zhang, Yang ,Cheng, Liang ,et al. Heuristic path pruning algorithm based on error handling pattern recognition in detecting vulnerability[C]. IEEE Computer Society, 2001 L Street N.W., Suite 700, Washington, DC 20036-4928, United States,2013:95-100.
条目包含的文件
条目无相关文件。
个性服务
推荐该条目
保存到收藏夹
查看访问统计
导出为Endnote文件
谷歌学术
谷歌学术中相似的文章
[Chen, Dong (1)]的文章
[Zhang, Yang (1)]的文章
[Cheng, Liang (1)]的文章
百度学术
百度学术中相似的文章
[Chen, Dong (1)]的文章
[Zhang, Yang (1)]的文章
[Cheng, Liang (1)]的文章
必应学术
必应学术中相似的文章
[Chen, Dong (1)]的文章
[Zhang, Yang (1)]的文章
[Cheng, Liang (1)]的文章
相关权益政策
暂无数据
收藏/分享
所有评论 (0)
暂无评论
 

除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。