IntFinder: Automatically Detecting Integer Bugs in x86 Binary Program

机译：IntFinder：自动检测x86二进制程序中的整数错误

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Recently, Integer bugs have been increasing sharply and become the notorious source of bugs for various serious attacks. In this paper, we propose a tool, IntFinder, which can automatically detect Integer bugs in a x86 binary program. We implement IntFinder based on a combination of static and dynamic analysis. First, IntFinder decompiles a x86 binary code, and creates the suspect instruction set. Second, IntFinder dynamically inspects the instructions in the suspect set and confirms which instructions are actual Integer bugs with the error-prone input. Compared with other approaches, IntFinder provides more accurate and sufficient type information and reduces the instructions which will be inspected by static analysis. Experimental results are quite encouraging: IntFinder has detected the integer bugs in several practical programs as well as one new bug in slocate-2.7, and it achieves a low false positives and negatives.

机译：最近，整数错误迅速增加，并成为各种严重攻击的臭名昭著的来源。在本文中，我们提出了一个工具IntFinder，它可以自动检测x86二进制程序中的Integer错误。我们基于静态和动态分析的组合来实现IntFinder。首先，IntFinder反编译x86二进制代码，并创建可疑指令集。其次，IntFinder动态检查可疑集中的指令，并通过容易出错的输入来确认哪些指令是实际的Integer错误。与其他方法相比，IntFinder提供了更准确和充分的类型信息，并减少了将由静态分析检查的指令。实验结果令人鼓舞：IntFinder在几个实用程序中检测到整数错误，在slocate-2.7中检测到一个新错误，并且误报率和误报率都很低。

著录项

来源
《Information and communications security》|2009年|P.336-345|共10页
会议地点 Beijing(CN);Beijing(CN)
作者
Ping Chen; Hao Han; Yi Wang; Xiaobin Shen; Xinchun Yin; Bing Mao; Li Xie;
展开▼
作者单位

State Key Laboratory for Novel Software Technology, Nanjing University, Department of Computer Science and Technology, Nanjing University, Nanjing 210093;

rnState Key Laboratory for Novel Software Technology, Nanjing University, Department of Computer Science and Technology, Nanjing University, Nanjing 210093;

rnState Key Laboratory for Novel Software Technology, Nanjing University, Department of Computer Science and Technology, Nanjing University, Nanjing 210093;

rnCollege of Information Engineering, Yangzhou University, Yangzhou Jiangsu 225009, China;

rnCollege of Information Engineering, Yangzhou University, Yangzhou Jiangsu 225009, China;

rnState Key Laboratory for Novel Software Technology, Nanjing University, Department of Computer Science and Technology, Nanjing University, Nanjing 21009;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类通信保密与通信安全;
关键词

相似文献

外文文献
中文文献
专利

1. Dytaint: The implementation of a novel lightweight 3-state dynamic taint analysis framework for x86 binary programs [J] . Erzhou Zhu, Feng Liu, Zuo Wang, Computers & Security . 2015,第jula期

机译：Dytaint：针对x86二进制程序的新型轻量级三态动态污点分析框架的实现
2. DYBS: A Lightweight Dynamic Slicing Framework for Diagnosing Attacks on x86 Binary Programs [J] . Erzhou Zhu, Feng Liu, Xianyong Fang, Journal of software . 2014,第3期

机译：DYBS：一种轻量级动态切片框架，用于诊断对x86二进制程序的攻击
3. DYBS: A Lightweight Dynamic Slicing Framework for Diagnosing Attacks on x86 Binary Programs [J] . Erzhou Zhu, Feng Liu, Xianyong Fang, Journal of Computers . 2014,第3期

机译：DYBS：一种轻量级动态切片框架，用于诊断对x86二进制程序的攻击
4. IntFinder: Automatically Detecting Integer Bugs in x86 Binary Program [C] . Ping Chen, Hao Han, Yi Wang, International Conference on Information and Communications Security . 2009

机译：INTFINDER：在x86二进制程序中自动检测整数错误
5. Approximating Large-Scale Binary Integer Programs by Discrete Optimal Control [D] . Zhang, Pengbo 2015

机译：通过离散最优控制近似大规模二进制整数程序
6. Nonasymptotic Upper Bounds on Binary Single Deletion Codes via Mixed Integer Linear Programming [O] . Albert No 2019

机译：通过混合整数线性规划二进制单删除代码对二元删除码的巨大上限
7. Accmon: Automatically detecting memoryrelated bugs via program counter-based invariants [O] . Pin Zhou, Wei Liu, Long Fei, 2004

机译：accmon：通过基于程序计数器的不变量自动检测与内存有关的错误

IntFinder: Automatically Detecting Integer Bugs in x86 Binary Program

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅