Ruoyu Zhang, Shiqiu Huang
The evolution the computer science has exposed us to the growing gravity of the security problems and threats. Dynamic taint analysis is a prevalent approach to protect the program for malicious behaviors, but fails to provide any information about the code which is not executed. Thus, it is necessary to overcome the big limitation of traditional dynamic taint analysis.
SDCF (Static & Dynamic Combine Analysis) is a framework that combines dynamic taint analysis and static analysis for binary code analysis. It overcomes the limitation of traditional dynamic taint analysis by statically discovering and analyzing unexecuted program paths. As a framework built on DynamoRIO, SDCF provides dynamic and static analysis information to client tools for software vulnerability detection. Our experiments show that SDCF is not only able to provide efficient runtime protection by introducing an overhead of 4.16x based on the taint tracing technique, but also capable to discover latent software vulnerabilities which have not been exploited, and achieve the code coverage of more than 90%.
Now both binary version and source code are available on svn.
- Ruoyu Zhang, Shiqiu Huang, Zhengwei Qi, Haibing Guan, Static Program Analysis Assisted Dynamic Taint Tracking for Software Vulnerability Discovery, Computers and Mathematics with Applications
- Ruoyu Zhang, Shiqiu Huang, Zhengwei Qi, Haibin Guan, Combining Static and Dynamic Analysis to Discover Software Vulnerabilities, IMIS 2011.