| 数据关联性分析辅助漏洞挖掘 |
| |
| 引用本文: | 尹 青,李永伟,舒 辉. 数据关联性分析辅助漏洞挖掘[J]. 计算机应用研究, 2014, 31(2): 583-585 |
| |
| 作者姓名: | 尹 青 李永伟 舒 辉 |
| |
| 作者单位: | 解放军信息工程大学 数学工程与先进计算国家重点实验室, 郑州 450002 |
| |
| 摘 要: | 为了提高对缓冲区溢出漏洞的挖掘效率, 提出了使用数据关联性分析辅助漏洞挖掘的方法。该方法首先对目标文件进行反编译, 在反编译的基础上构建函数的抽象语法树 (AST), 设计算法提取关键变量的反向关联信息, 之后将提取的信息应用到漏洞挖掘中。该方法在无源码漏洞挖掘方面有明显优势, 能有效发掘软件中存在的缓冲区溢出漏洞可疑点, 提高漏洞挖掘的效率和自动化程度。
|
| 关 键 词: | 反编译 漏洞挖掘 缓冲区溢出 数据关联性 抽象语法树 |
Data correlation analysis assists vulnerability detection |
| |
| YIN Qing,LI Yong-wei,SHU Hui. Data correlation analysis assists vulnerability detection[J]. Application Research of Computers, 2014, 31(2): 583-585 |
| |
| Authors: | YIN Qing LI Yong-wei SHU Hui |
| |
| Affiliation: | State Key Laboratory of Mathematical Engineering & Advanced Computing, PLA Information Engineering University, Zhengzhou 450002, China |
| |
| Abstract: | In order to improve the efficiency of such vulnerabilities discovery, this paper presented a method which used data correlation analysis auxiliary vulnerabilities discovery. Firstly, the method decompiled target files and constructed the abstract syntax tree (AST), designed algorithm to extract the inversely correlation information of key variables. Then, it applied the extracted information to detect of buffer overflow. This method has obvious advantages in non-source code vulnerability disco-very, can discover buffer overflow in the software effectively, and improve the efficiency and automation of vulnerability discovery. |
| |
| Keywords: | decompile vulnerability discovery buffer overflow data correlation abstract syntax tree(AST) |
|
| 点击此处可从《计算机应用研究》浏览原始摘要信息 |
|
点击此处可从《计算机应用研究》下载全文 |
|
