Design and implementation of binary program vulnerability detection
Luo Zhixiang1,Xiang Qi2,Li Leyan1,3
(1Fifth Research Institute of Ministry of Industry and Information Technology, Guangzhou 511370, China;2Software College,Northeastern University,Shenyang 110819,China;3Key Laboratory of Intelligent Product Quality Evaluation and Reliability Assurance Technology, Ministry of Industry and Information Technology, Guangzhou 511370, China)
Abstract: Given the inefficiencies associated with the heavy reliance on manual heuristic rules for static analysis of binary programs at the current stage, and the low performance and scalability of existing binary program vulnerability scanning systems, this paper has designed and implemented a vulnerability detection system for binary programs based on taint analysis. Compared to the existing binary program vulnerability detection systems, the system designed in this paper improves the algorithm proposed in the Java pointer analysis, allowing the data abstraction and pointer analysis portions of the process to be separated. This further simplifies the taint analysis, enhancing its performance and scalability. Additionally, this paper extracts vulnerability patterns separately, making it much easier to customize vulnerability patterns.
Key words : static analysis of binary programs; pointer analysis; taint analysis; vulnerability patterns