An Integrated System and Method for Pattern-Based Dynamic Vulnerability Mining

Abstract

The invention relates to a pattern-based dynamic loophole mining integration system and method, which includes a dynamic stain analysis module, a test case selection module, a constraint solving module and a management module. First, the seed use case is transmitted to the application program, and the dynamic taint analysis module will track the propagation of taint data in the program, and symbolize the propagation trace, that is, combine dynamic taint analysis technology and symbolic execution technology to obtain symbolic The taint propagation path is then used as the input of the constraint solving module, and the constraint solving obtains new test cases, and retransmits the test cases to the application program to continue the follow-up operation. The whole process is carried out under the unified scheduling management of the management module . The invention improves the automation degree and efficiency of dynamic vulnerability data digging for binary programs, and the generated test data has high accuracy and efficiency, making the process of fuzzy testing more targeted.

Description

technical field [0001] The invention relates to a dynamic vulnerability data mining integration system and method for binary programs, belonging to the fields of software engineering and information security. Background technique [0002] With the rapid development of information technology and the continuous progress of society, information is becoming more and more important to the development of modern society, and the resulting information security issues have also attracted more attention. As an important part of information security, network security is related to national security and social stability, and its importance has become increasingly prominent with the acceleration of global informatization. [0003] For a long time, software security vulnerabilities have been the main root cause of various network security. According to the investigation and analysis of the National Computer Virus Emergency Response Center, "unpatched network (system) security holes" are ...

AI Technical Summary

Problems solved by technology

At present, most of the software does not provide the source code, so it is difficult to carry out effective static analysis, especially in the case of using imported software and other commercial software, and cannot fully control all aspects of software development, it is necessary to conduct in-depth analysis and analysis of the security of software implementation. Strict evaluation is an important means to ensure the security of information systems, gray box testing is particularly important

[0006] In the process of dynamic vulnerability mining for binary programs, the most commonly used methods are white-box testing and black-box testing. The defects detected by white-box testing may not be triggered during operation, while black-box testing has great blindness.

At the same time, a single method is often used in the testing process, which is inefficient and poorly targeted, and different vulnerabilities have different patterns, so it cannot be generalized for all types of vulnerabilities

Images