基于对象的C程序边界安全检测改进技术

doi:10.3969/j.issn.1006-2475.2015.10.006

计算机与现代化

基于对象的C程序边界安全检测改进技术

(南京航空航天大学计算机科学与技术学院，江苏南京 210016)

收稿日期:2015-04-20 出版日期:2015-10-10 发布日期:2015-10-10
作者简介:马银雪(1990-)，女，江苏东海人，南京航空航天大学计算机科学与技术学院硕士研究生，研究方向：软件工程，软件验证; 李文明(1989-)，男，湖南娄底人，硕士研究生，研究方向：软件工程，软件验证; 陈哲(1981-)，男，副教授，博士，研究方向：软件验证，形式化方法。
基金资助:
国家自然科学基金资助项目(61100034)

Improved Object-based Approaches for Bounds Checking of C Programs

(College of Computer Science and Technology, Nanjing University of Aeronautics and Astronautics, Nanjing 210016, China)

Received:2015-04-20 Online:2015-10-10 Published:2015-10-10

摘要/Abstract

摘要： C语言对内存操作不进行边界安全检测，这使C程序具有高执行效率，但也产生各种安全问题，例如数组越界、指针访问越界、C库函数的非法操作等。基于对象的运行时验证技术能实时监测程序的运行行为，自动找出程序中存在的漏洞。在原有基于对象技术的基础上，改进多维数组和结构体变量的地址范围记录方式，用2次地址查询操作检测指针访问，用平衡二叉树优化存储结构。实验结果表明，改进的方法优于传统的基于对象技术。

关键词: 运行时验证, 基于对象技术, 边界检测

Abstract: C programs are efficient because it did not check memory bounds safety. However, it also brought a lot of security issues, such as out of bounds of arrays and pointers, illegal operations of C library functions. Object-based runtime verification approaches can monitor program running and find bugs automatically. We improved the traditional approaches by changing address range records of multidimensional arrays and structure variables, querying address two times to detect pointer access, and using AVL tree for storage structure of records. The experiment shows that our approach is better than traditional ones.

Key words: runtime verification, object-based approach, bounds checking

中图分类号:

TP309

马银雪，李文明，陈哲. 基于对象的C程序边界安全检测改进技术[J]. 计算机与现代化, doi: 10.3969/j.issn.1006-2475.2015.10.006.

MA Yin-xue, LI Wen-ming, CHEN Zhe. Improved Object-based Approaches for Bounds Checking of C Programs[J]. Computer and Modernization, doi: 10.3969/j.issn.1006-2475.2015.10.006.

参考文献

[1] Jones R W M, Kelly P H J. Backwards-compatible bounds checking for arrays and pointers in C programs[C]// Proceedings of the 3rd International Workshop on Automated and Algorithmic Debugging. 1997:13-26.

[2] Ruwase O, Lam M S. A practical dynamic buffer overflow detector[C]// Proceedings of the 11th Symposium on Network and Distributed System Security. 2004:159-169.

[3] Dhurjati D, Adve V. Backwards-compatible array bounds checking for C with very low overhead[C]// Proceedings of the 28th International Conference on Software Engineering. 2006:162-171.

[4] Nagarakatte S, Zhao Jianzhou, Martin M M K, et al. SoftBound: Highly compatible and complete spatial memory safety for C[C]// Proceedings of the 30th ACM SIGPLAN Conference on Programming Language Design and Implementation. 2009:245-258.

[5] Nagarakatte S, Zhao Jianzhou, Martin M M K, et al. CETS: Compiler-enforced temporal safety for C[C]// Proceedings of the 2010 ACM International Symposium on Memory Management. 2010:31-40.

[6] Akritidis P, Costa M, Castro M, et al. Baggy bounds checking: An efficient and backwards-compatible defense against out-of-bounds errors[C]// Proceedings of the 18th USENIX Security Symposium. 2009:51-66.

[7] Yuan Jun, Johnson R. CAWDOR: Compiler assisted worm defense[C]// Proceedings of the 12th IEEE International Working Conference on Source Code Analysis and Manipulation (SCAM). 2012:54-63.

[8] Simpson M S, Barua R K. MemSafe: Ensuring the spatial and temporal memory safety of C at runtime[J]. Software: Practice and Experience, 2013,43(1):93-128.

[9] Kosmatov N, Petiot G, Signoles J. An optimized memory monitoring for runtime assertion checking of C programs[C]// Proceedings of the 4th International Conference on Runtime Verification. 2013:167-182.

[10] Jim T, Morrisett J G, Grossman D, et al. Cyclone: A safe dialect of C[C]// Proceedings of the General Track: 2002 USENIX Annual Technical Conference. 2002:275-288.

[11] Necula G C, Condit J, Harren M, et al. CCured: Type-safe retrofitting of legacy software[J]. ACM Transactions on Programming Languages and Systems, 2005,27(3):477-526.

[12] Xu Wei, DuVarney D C, Sekar R. An efficient and backwards-compatible transformation to ensure memory safety of C programs[C]// Proceedings of the 12th ACM SIGSOFT International Symposium on Foundations of Software Engineering. 2004:117-126.

[13] Oiwa Y. Implementation of the memory-safe full ANSI-C compiler[C]// Proceedings of the 2009 ACM SIGPLAN Conference on Programming Language Design and Implementation. 2009:259-269.

[14] Cowan C, Pu C, Maier D, et al. StackGuard: Automatic adaptive detection and prevention of buffer-overflow attacks[C]// Proceedings of the 7th USENIX Security Symposium. 1998:63-78.

[15] Hasabnis N, Misra A, Sekar R. Light-weight bounds checking[C]// Proceedings of the 10th International Symposium on Code Generation and Optimization. 2012:135-144.

[16] Seward J, Nethercote N. Using Valgrind to detect undefined value errors with bit-precision[C]// Proceedings of the General Track: 2005 USENIX Annual Technical Conference. 2005:17-30.

[17] Bruening D, Zhao Qin. Practical memory checking with Dr. Memory[C]// Proceedings of the 9th Annual IEEE/ACM International Symposium on Code Generation and Optimization. 2011:213-223.

[18] Younan Y, Philippaerts P, Cavallaro L, et al. PAriCheck: An efficient pointer arithmetic checker for C programs[C]// Proceedings of the 5th ACM Symposium on Information, Computer and Communications Security. 2010:145-156.

[19] Guthaus M R, Ringenberg J S, Ernst D, et al. MiBench: A free, commercially representative embedded benchmark suite[C]// Proceedings of the 2001 IEEE International Workshop on Workload Characterization. 2001:3-14.

基于对象的C程序边界安全检测改进技术

Improved Object-based Approaches for Bounds Checking of C Programs

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 3

编辑推荐

Metrics

本文评价

[1]	胡磊，江国华. 一种基于预测的运行时验证开销控制方法[J]. 计算机与现代化, 2016, 0(4): 94-99.
[2]	左宇鹏1,2. 基于深度图压缩的边界自适应上采样方案[J]. 计算机与现代化, 2014, 0(5): 84-88.
[3]	许帅;隋平. 一种基于MaC的运行时验证框架的研究[J]. 计算机与现代化, 2010, 1(01): 188-190.