Multi-semantic dynamic taint analysis method

A dynamic taint and analysis method technology, applied in the computer field, can solve problems such as single semantics, achieve the effects of improving processing capabilities, enhancing description capabilities, and improving analysis efficiency

Active Publication Date: 2016-07-27
INST OF SOFTWARE - CHINESE ACAD OF SCI
View PDF4 Cites 11 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0010] Aiming at the problem of single semantics in the existing DTA technology, the purpose of the present invention is to provide a multi-semantic dynamic taint analysis method, which uses different taint types to indicate taint data with different semantics in the program, and sets the taint propagation rules for each type and the default propagation rules, and then the multi-semantic taint propagation process can be completed through one analysis

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Multi-semantic dynamic taint analysis method
  • Multi-semantic dynamic taint analysis method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0025] The technical scheme of the present invention is described in detail below in conjunction with accompanying drawing:

[0026] like figure 1 As shown, a multi-semantic dynamic taint analysis method includes the following stages:

[0027] 1. Generate different taint semantic types according to the multi-semantic taint configuration

[0028] First, analyze the configuration requirements of multi-semantic dynamic taint analysis, that is, extract how many different taint semantic types are tracked at the same time, and then combine each taint semantic type to initialize related instance parameters. Specifically, the present invention uses the instance parameter TT=(T, L, C, R, P, F) to describe the taint semantic type, wherein T represents a unique type mark, for example, 0 represents a common file type taint, and 1 represents a network data type Stain; L is the taint semantic type, C represents all the methods that generate this kind of taint semantic type in the program,...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a multi-semantic dynamic taint analysis method. The method comprises the steps of 1) setting a unique taint semantic type for each type of to-be-tracked semantic data; performing configuration in a one-time dynamic taint analysis process to simultaneously track various semantic information data; 2) according to each taint semantic type, monitoring whether a function of generating the semantic information data of the taint semantic type is called or not in a program running process; if yes, judging that a corresponding taint source exists, and performing recording; 3) according to the monitored semantic information of each instruction and a taint state of an operand, performing taint spread calculation, and recording a calculation result to a shadow memory; and 4) after the spread calculation, judging whether an instruction executed by a program is a sensitive instruction or not according to a preset program sensitive instruction set in the existing taint semantic type, and if yes, performing taint detection to determine whether a taint of the corresponding type exists or not in the position of the instruction. According to the method, the analysis efficiency of a dynamic taint spread method is improved.

Description

technical field [0001] The invention belongs to the technical field of computers, and in particular relates to a multi-semantic dynamic stain analysis method. Background technique [0002] Dynamic Taint Analysis (DTA) technology, from the basic principle, mainly tracks the processing logic of external untrustworthy data inside the program, and discovers the content of tainted data that may be hidden in sensitive locations of the program through the rules of taint diffusion. Finally, this mechanism is used to solve related problems in program security analysis, such as malicious code detection, software vulnerability mining, and sensitive data protection. After years of development, DTA technology has become an important method in the field of software security analysis. [0003] According to relevant statistics, from 2004 to 2015, there were more than one hundred research results related to dynamic taint propagation. Among them, the TaintBochs system proposed by J. Chow of...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F11/36G06F21/52G06F21/55G06F21/57
CPCG06F11/3612G06F21/52G06F21/552G06F21/577G06F2221/033
Inventor 和亮苏璞睿杨轶闫佳黄桦烽
Owner INST OF SOFTWARE - CHINESE ACAD OF SCI
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap