Title | ||
---|---|---|
Towards Semi-automated Detection of Trigger-based Behavior for Software Security Assurance |
Abstract | ||
---|---|---|
A program exhibits trigger-based behavior if it performs undocumented, often malicious, functions when the environmental conditions and/or specific input values match some pre-specified criteria. Checking whether such hidden functions exist in the program is important for increasing trustworthiness of software. In this paper, we propose a framework to effectively detect trigger-based behavior at the source code level. Our approach is semi-automated: We use automated source code instrumentation and mixed concrete and symbolic execution to generate potentially suspicious test cases that may trigger hidden, potentially malicious functions. The test cases must be investigated by a human analyst manually to decide which of them are real triggers. While our approach is not fully automated, it greatly reduces manual work by allowing analysts to focus on a few test cases found by our automated tools. |
Year | DOI | Venue |
---|---|---|
2017 | 10.1145/3098954.3105821 | ARES |
Keywords | Field | DocType |
Mixed Concrete and Symbolic Execution, Trigger-based Behavior, Static Analysis, Source Code Analysis, Software Security | Source code,Computer science,Computer security,Trustworthiness,Software security assurance,Static analysis,Software,Test case,Symbolic execution,Source code instrumentation,Embedded system | Conference |
ISBN | Citations | PageRank |
978-1-4503-5257-4 | 2 | 0.37 |
References | Authors | |
9 | 3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Dorottya Papp | 1 | 2 | 0.37 |
Levente Buttyán | 2 | 3108 | 267.10 |
Zhendong Ma | 3 | 386 | 33.29 |