PA:SDCF

From Trusted Cloud Group
Jump to: navigation, search

Contents

Team Members

Ruoyu Zhang, Shiqiu Huang

Motivation

The evolution the computer science has exposed us to the growing gravity of the security problems and threats. Dynamic taint analysis is a prevalent approach to protect the program for malicious behaviors, but fails to provide any information about the code which is not executed. Thus, it is necessary to overcome the big limitation of traditional dynamic taint analysis.

Introduction

SDCF (Static & Dynamic Combine Analysis) is a framework that combines dynamic taint analysis and static analysis for binary code analysis. It overcomes the limitation of traditional dynamic taint analysis by statically discovering and analyzing unexecuted program paths. As a framework built on DynamoRIO, SDCF provides dynamic and static analysis information to client tools for software vulnerability detection. Our experiments show that SDCF is not only able to provide efficient runtime protection by introducing an overhead of 4.16x based on the taint tracing technique, but also capable to discover latent software vulnerabilities which have not been exploited, and achieve the code coverage of more than 90%.

Status

Now both binary version and source code are available on svn.

Publication

  • Ruoyu Zhang, Shiqiu Huang, Zhengwei Qi, Haibing Guan, Static Program Analysis Assisted Dynamic Taint Tracking for Software Vulnerability Discovery, Computers and Mathematics with Applications
  • Ruoyu Zhang, Shiqiu Huang, Zhengwei Qi, Haibin Guan, Combining Static and Dynamic Analysis to Discover Software Vulnerabilities, IMIS 2011.

Technical Documents

Personal tools
Namespaces
Variants
Actions
Navigation
Upload file
Toolbox