Method for detecting code security hole based on constraint analysis and model checking

Abstract

The invention relates to a method for detecting a code security hole based on constraint analysis and model checking, which can extract the source code of a C program in a constraint way and detect the security hole of the program with the model checking. The main content comprises the following steps: buffer attribute information which is involved in the source code of the C program is extracted with a constraint analysis technology; the corresponding ASSERT sentence information of attribute generation, attribute transmission and attribute constraint is inserted into variable declaration, variable assignment and function call site with the buffer attribute information; the inserted code can be taken as the input of the model checking to judge whether the program is accessible, find whether the dangerous points in the program really has an accessible path and finally find the security hole in the source code. Currently, independent model checking can not detect the security hole of the buffer and the like, the method combines the static detecting technology of the constraint analysis with the model detecting technology to realize the detection of the security hole of the buffer overflow and the like, wherein, the detecting precision of the method is higher than that of the general static detecting technology. By extracting the other dangerous function information of the source code, corresponding inserting process is carried out. The invention also can detect the security holes such as formative character string, code injection, privilege escalation, etc.

Description

Technical field: [0001] The invention relates to a static detection method for source code loophole detection. Background technique: [0002] With the development of information technology, computer software has penetrated into various fields of the national economy and is closely related to people's production and life. The security of software is becoming more and more important. Once some key software is damaged, it will cause industrial and even national paralysis. Malicious users can target specific software bugs and run malicious code to gain access to illegal data. Buffer overflow vulnerability is the most important kind of this kind of security hole at present. Malicious users can analyze the input data format of the program and determine that these data are stored in the buffer of the program, so that the user may overwrite the sensitive data in the stack space through special input data, especially return the saved The address is replaced with the address of the...

AI Technical Summary

Problems solved by technology

Different from the static detection method, the dynamic detection technology has no limit to the size of the program and can detect large programs. However, the obvious disadvantage is that the dynamic detection technology is dependent on the input, and only when a specific input makes the program execute to a dangerous point Vulnerabilities are not discovered until , resulting in a high rate of false positives

[0004] Simple model detection methods generally

Images