| 一种面向二进制的控制流图混合恢复方法 |
| |
| 引用本文: | 叶志斌,姜鑫,史大伟. 一种面向二进制的控制流图混合恢复方法[J]. 计算机应用研究, 2018, 35(7) |
| |
| 作者姓名: | 叶志斌 姜鑫 史大伟 |
| |
| 作者单位: | 江南计算技术研究所,江南计算技术研究所,江南计算技术研究所 |
| |
| 基金项目: | 国家自然科学基金(91430214) |
| |
| 摘 要: | 控制流图恢复是进行二进制文件安全性分析的基础,静态恢复分析速度快,但其精确度欠缺;动态恢复方法的优点是精确度高,但分析效率较低。将两者优点结合,提出了面向二进制程序的混合分析恢复方法,在对二进制文件进行静态分析生成控制流图的基础上,结合局部符号执行技术和反向切片技术对间接分支跳转的目的地址进行求解,之后再分析边和节点的可达性,合并不可达的边和节点。经实验验证,混合方法的分析效率与静态方法相近,远高于纯动态分析方法,其精确度较静态方法有较大提高。
|
| 关 键 词: | 二进制分析;符号执行;反向切片;控制流图 |
| 收稿时间: | 2017-04-21 |
| 修稿时间: | 2018-05-27 |
A combined method of constructing binary-oriented control flow graphs |
| |
| Affiliation: | JiangNan Institude of Computing Technology,, |
| |
| Abstract: | Constructing binary control flow graph is the base of analysing the binary security. The static method is efficient, while facing the precision shortage; dynamic analysis with the advantage of precision ,however is limited to its poor speed. This paper base on the characteristics of both static and dynamic method, put forward the combined method of binary control flow graph construct, with the base of control flow graph static constructed, using partial symbolic execution analysis and backward slicing analysis to compute the targets of indirect jumps, and then analyses the reachability of nodes and edges. Merging the unreachable nodes and edges. The experimental result shows that combined method with the similar efficiency of static analysis, far faster than dynamic method. It has a better precision compare with static method. |
| |
| Keywords: | binaries analysis symbolic execution backward slicing control flow graph |
|
| 点击此处可从《计算机应用研究》浏览原始摘要信息 |
|
点击此处可从《计算机应用研究》下载全文 |
|
