A Path Automatic Generation Method for Dynamic Taint Analysis

doi:10.3969/j.issn.1006-2475.2017.07.006

Abstract

Abstract: Based on the research and analysis of the existing dynamic taint analysis platform， a path automatic generation method is proposed. The sequence of instructions can be obtained by using binary static analysis technique and the binary code coverage rate is calculated with the base block as the granularity. The execution path of the target program is captured in the dynamic execution of the target program and the new path constraint conditions are constructed by the collected path constraint conditions, new test cases which will cover other paths can be generated by constraint solving. The parallel implementation of dynamic taint analysis by using virtualization technology can greatly improve the efficiency and code coverage of the taint analysis.

Key words: dynamic taint analysis, path automatic generation, constraint solving, code coverage

CLC Number:

TP311.5

DONG Guo-Liang1,2, ZANG Lie1, LI Hang1, GAN Lu1. A Path Automatic Generation Method for Dynamic Taint Analysis[J]. Computer and Modernization, doi: 10.3969/j.issn.1006-2475.2017.07.006.

References

［1］Lam M S, Martin M, Livshits B, et al. Securing Web applications with static and dynamic information flow tracking［C］// Proc. of the 2008 ACM SIGPLAN Symp. on Partial Evaluation and Semantics-based Program Manipulation. 2008:3-12.
［2］宋奕青. 基于动态二进制探测框架的缓冲区溢出检测研究［D］. 上海:上海交通大学, 2010.
［3］Newsome J, Song D． Dynamic taint analysis: Automatic detection,analysis,and signature generation of exploits on commodity software［C］// Proc. of the 12th Network and Distributed System Security Symposium． 2005．
［4］Clause J, Li W, Orso A. Dytan: A generic dynamic taint analysis framework［C］// Proc. of 2007 International Symposium on Software Testing and Analysis. 2007:196-206．
［5］Portokalidis G, Slowinska A, Bos H. Argos: An emulator for fingerprinting zero-day attaks for advertised honeypots with automatic signature generation［J］. ACM SIGOPS Operating Systems Review, 2006,40(4):15-27.
［6］Qin Feng, Wang Cheng, Li Zhenmin, et al. LIFT: A low-overhead practical information flow tracking system for detecting security attacks［C］// The 39th Annual IEEE/ACM International Symposium on Microarchitecture(MICRO06). 2006:135-148.
［7］Ganesh V, Leek T, Rinard M. Taint-based directed whitebox fuzzing［C］// Proceedings of the 31st International Conference on Software Engineering. 2009:474-484.
［8］宋铮,王永剑,金波,等. 二进制程序动态污点分析技术研究综述［J］. 信息网络安全, 2016(3):77-83.
［9］Dumitru C. Detecting software vulnerabilities static taint analysis［D］. Bucharest : University Politehnica of Bucharest, 2009.
［10］Nethercote N, Walsh R, Fitzhardinge J. Building workload characterization tools with valgrind［C］// 2006 IEEE International Symposium on Workload Characterization. 2006:2.
［11］King J C. Symbolic execution and program testing［J］. Communications of the ACM, 1976,19(7):385-394.
［12］姚伟平,王震宇,刘建林,等. 二进制代码覆盖率评估系统的设计与实现［J］. 计算机工程与设计, 2011,31(24):5262-5264.
［13］Kinder J, Veith H. Jakstab: A static analysis platform for binaries［C］// Proceeding of the 20th International Conference on Computer Aided Verification. 2008:423-427.
［14］Miller B P, Fredriksen L, So B. An empirical study of the reliability of UNIX utilities［J］. Communications of the ACM, 1990,33(12):32-44.
［15］Ganesh V, Dill D L. A decision procedure for bit-vectors and arrays［C］// International Conference on Computer Aided Verification. 2007:519-531.
［16］Brumley D, Jager I, Avgerinos T, et al. BAP: A binary analysis platform［C］// Proceedings of the Conference on Computer Aided Verification. 2011:463-469.
［17］Brumley D, Jager I, Schwartz E J, et al. The BAP Handbook［EB/OL］. http://bap.ece.cmu.edu/doc/bap.pdf, 2009-07-10.
［18］Godefroid P, Levin M Y, Molnar D A. Automated whitebox fuzz testing［C］// Network and Distributed System Security Symposium. 2008:151-166.
［19］Luk C K, Cohn R, Muth R, et al. Pin: Building customized program analysis tools with dynamic instrumentation［C］// ACM SIGPLAN Notices. 2005,40(6):190-200.

[1]	LU Wei-qiang. Microservices-based Architecture Design for Civil Aircraft Industrial Software [J]. Computer and Modernization, 2023, 0(07): 73-78.
[2]	FENG Si-zhe, YANG Zhi-bin, XUE Lei. Automatic Generation Method of Ada Code for Aerospace Embedded Software Based on AADL [J]. Computer and Modernization, 2020, 0(06): 52-.
[3]	LIANG Xiao-qi1, DAI Yong-hui2, ZANG Hong-yan1. Intelligent Attendance System Based on Dual Positioning Technology [J]. Computer and Modernization, 2020, 0(01): 58-.
[4]	Abudukelimu Yusufu1,2, WANG Liang-liang1. FFMPEG Online Video Conversion System Based on Autonomous Controllable Platform [J]. Computer and Modernization, 2020, 0(01): 81-.
[5]	DAI Wen-bo, XU Luo, WEI Jin-yi. Automation Software Deployment Algorithm for Military Information System [J]. Computer and Modernization, 2020, 0(01): 90-.
[6]	WEI Jin-yi, XU Luo, DAI Wen-bo. Fault Injection Technique Based on Vulnerability Analysis [J]. Computer and Modernization, 2019, 0(12): 39-.
[7]	SUN Yi1, YANG Xiao-hua1, LIU Jie1, YU Tong-lan1, WU Zhi-qiang2, CHEN Zhi2. Test Case Generation Techniques Based on Constraints Presented as Boolean Expressions [J]. Computer and Modernization, 2019, 0(01): 86-.
[8]	XIONG Bo, BAI Han, HAO Xiao-lei. Application of Automated Test Technology in FADEC Control Software [J]. Computer and Modernization, 2018, 0(10): 94-.
[9]	OU Jin-rong, XU Jun-shan. Application of Mobile Payment in Subway Ticket Vending Machine System [J]. Computer and Modernization, 2018, 0(10): 106-.
[10]	LI Jun-feng, GU Bin-bing, LI Hai-hao. Evaluation Method for Software Testing Quality [J]. Computer and Modernization, 2018, 0(09): 38-.
[11]	CHEN Xiao, SUN Ying-hao， ZHAO Pan, LIU Qian. Component Measurement Based on Fuzzy Inference [J]. Computer and Modernization, 2018, 0(05): 50-.
[12]	ZHANG Zhi, WANG Min. An Improved Cause-effect Graph Method and Its Implementation [J]. Computer and Modernization, 2018, 0(03): 89-.
[13]	CHU Jia-qi1,2, LIU Cong-jun1,2. Application of WeChat Public Service Platform in E-government [J]. Computer and Modernization, 2018, 0(02): 33-.
[14]	LIU Weiwei, ZHUANG Yi, LI Mi. An Embedded Software Reliability Modeling and Evaluation Method [J]. Computer and Modernization, 2017, 0(8): 78-.
[15]	HU Wang-sheng. Taint Analysis of Fragments in Android Applications [J]. Computer and Modernization, 2017, 0(7): 42-47.