Abstract | ||
---|---|---|
Dynamic taint analysis based software vulnerability and malware detection is an effective method to detect a wide range of vulnerabilities. Unfortunately, existing systems suffer from requirement of source code, high overhead or shortage of discovery rules, which limit their usage. This paper proposes a low-overhead vulnerability discovery system called DsVD (Dynamic Software Vulnerabilities Discoverer). DsVD works on X86 executables and does not need any hardware change. A new taint state called controlled-taint is introduced to detect more types of vulnerabilities. Our experiments show that DsVD can effectively detect various software vulnerabilities. DsVD incurs very low overhead, only 3.1 times on average forSPECINT2006 benchmarks. With some optimizations such as Irrelevant API Filter and Basic Block Handling, it can reduce runtime overhead by a factor of 4-11 times. |
Year | DOI | Venue |
---|---|---|
2011 | 10.1109/ISADS.2011.56 | ISADS |
Keywords | Field | DocType |
dynamic taint analysis,discovery rule,various software vulnerability,low-overhead vulnerability discovery system,basic block handling,vulnerability discoverer,software vulnerability,runtime overhead,effective low-overhead dynamic software,new taint state,low overhead,high overhead,software reliability,registers,optimization,software security,security,source code | Vulnerability (computing),Computer science,Software security assurance,Source code,Real-time computing,Basic block,Taint checking,Software,Malware,Software quality,Operating system,Distributed computing | Conference |
Citations | PageRank | References |
1 | 0.35 | 7 |
Authors | ||
6 |
Name | Order | Citations | PageRank |
---|---|---|---|
Zhuo Wang | 1 | 17 | 2.91 |
Zhushou Tang | 2 | 1 | 0.69 |
Kan Zhou | 3 | 16 | 3.43 |
Ruoyu Zhang | 4 | 15 | 2.41 |
Zhengwei Qi | 5 | 680 | 57.66 |
Haibing Guan | 6 | 1106 | 105.35 |