| 面向JRENative漏洞的寄存器符号化监测 |
| |
| 引用本文: | 李骁,聂森,赵彤彤,宦飞.面向JRENative漏洞的寄存器符号化监测[J].信息安全与通信保密,2014(2):68-72,77. |
| |
| 作者姓名: | 李骁 聂森 赵彤彤 宦飞 |
| |
| 作者单位: | [1]上海交通大学信息安全工程学院 [2]上海交通大学电子信息与电气工程学院,上海200240 |
| |
| 基金项目: | 上海市重点科技攻关项目(编号:10511500100). |
| |
| 摘 要: | Java语言是最为流行的编程语言之一,拥有非常大的用户群,其安全问题十分重要,其中JRENative漏洞逐渐成为研究热门。本项研究基于符号执行技术提出一种寄存器符号化监测方法,选取符号执行平台S2E作为漏洞挖掘工具,并且实现了针对JRENative漏洞挖掘的辅助插件SymJava和SymRegMonitor,基于OpenJDK和OracleJRE逆向代码进行源代码白盒审计并构建了用于进行漏洞挖掘的Java测试用例,最后对36个调用JavaNativeAPI的Java测试用例进行测试,发现了6个JRENative安全隐患,其中2个可被攻击者恶意利用。
|
| 关 键 词: | JRE Native漏洞 漏洞挖掘 符号执行 寄存器符号化 源代码审计 |
Symbolic Register Monitoring in JRE Native Vulnerability Mining |
| |
| LI Xiao,NIE Sen,ZHAO Tong-tong,HUAN Fei.Symbolic Register Monitoring in JRE Native Vulnerability Mining[J].China Information Security,2014(2):68-72,77. |
| |
| Authors: | LI Xiao NIE Sen ZHAO Tong-tong HUAN Fei |
| |
| Affiliation: | (aSchool of Information Security Engineering, Shanghai Jiaotong University; bSchool of Electronic Information and Electrical Engineering, Shanghai 200240, China) |
| |
| Abstract: | With enormous user group, Java is one of the most popular coding languages, So its security issue is of much importance, and among which the JRE native vulnerability mining becomes the even more hot research topic. Register monitoring is an approach for fuzzing. This paper gives means of symbolic register monitoring based on symbolic execution technology. Symbolic execution framework S2E is chosen as the tool for vulnerability mining, while SymJava and SymReg Monitor are developed as the assistant plugins on S2E. Java test cases for vulnerability mining are constructed through source code audit of OpenJDK and reversion code of Oracle JRE. The test indicates 6 JRE native hidden dangers in 36 test cases based on Java Native API, among which 2 vulnerabilities could be viciously exploited by the attacker. |
| |
| Keywords: | JRE native vulnerability vulnerability mining symbolic execution symbolic register source code audit |
| 本文献已被 CNKI 维普 等数据库收录! |
