基于依赖的J2EE程序污点分析方法

J2EE Program Taint Analysis Method Based on Dependency

下载PDF

导出

摘要污点分析通常采用近似或简化方法对大规模程序进行分析,导致分析结果不精确。为此,扩展现有变量依赖关系定义,对不同方法参数的依赖关系以及域变量和参数的依赖关系进行建模,提出一种面向J2EE程序、基于需求的数据依赖图构建方法。根据预定义的污点分析方法和扩展定义的依赖关系构建数据依赖边,采用多阶段分析方法遍历依赖图中的依赖路径,以有效分析较大规模程序。实验结果表明,与现有Java污点分析方法 TAJ相比,该方法的精确度和时间性能均有较大提高。 Taint analysis usually uses approximate or simplified method to analyze large scale program.So that the results are imprecise.In order to solve this problem,by extending current definition of dependency relation,modeling dependent relation between parameters of the method,modeling the relation between heap variable and parameters,this paper presents a new method to construct a demand-based data dependent graph orienting J2EE programs.This method uses predefined taint analysis method and extending definition for dependency relation to build data dependency edges.Multistage analysis method traverses dependency paths in dependency graph so as to analyze large scale programs efficiently.Experimental results show that the method has much improvement on analysis precision and time performance compared with Taint Analysis for Java（TAJ） method.

作者郭帆周轩

机构地区江西师范大学计算机信息工程学院

出处《计算机工程》 CAS CSCD 北大核心 2016年第6期131-138,共8页 Computer Engineering

基金国家自然科学基金资助项目(61562040 61562041)

关键词污点分析依赖关系建模方法数据依赖图多阶段分析 taint analysis dependency relationship modeling method data dependency graph multi-phase analysis

分类号 TP393 [自动化与计算机技术—计算机应用技术]

引文网络
相关文献

参考文献15

1Livshits V B,Lam M S.Finding Security Vulnerabilities in Java Applications with Static Analysis[C]//Proceedings of the 14th USENIX Security Symposium.New York,USA:ACM Press,2005:18-33.
2Son S,Mc Kinley K S,Shmatikov V.Diglossia:Detecting Code Injection Attacks with Precision and Efficiency[C]//Proceedings of ACM Conference on Computer and Communications Security.New York,USA:ACM Press,2013:1181-1192.
3Jovanovic N,Kruegel C,Kirda E.Static Analysis for Detecting Taint-style Vulnerabilities in Web Applications[J].Journal of Computer Security,2010,18(5):861-907.
4黄强,曾庆凯.基于信息流策略的污点传播分析及动态验证[J].软件学报,2011,22(9):2036-2048. 被引量：21
5Wasserman G,Su Z.Static Detection of Cross-site Scripting Vulnerabilities[C]//Proceedings of the 30th ACM/IEEE International Conference on Software Engineering.New York,USA:ACM Press,2008:171-180.
6Dahse J,Holz T.Simulation of Built-in PHP Features for Precise Static Code Analysis[C]//Proceedings of Network and Distributed System Security Symposium.San Diego,USA:[s.n.],2014:1-15.
7Tripp O,Pistoia M,Fink S.TAJ:Effective Taint Analysis of Web Applications[C]//Proceedings of ACM SIGPLAN2009 Conference on Programming Language Design and Implementation.New York,USA:ACM Press,2009:87-97.
8Martin M,Livshits B,Lam M S.Finding Application Errors and Security Flaws Using PQL:A Program Query Language[C]//Proceedings of the 20th Annual Conference of Object-oriented Programming,Systems,Languages and Applications.New York,USA:ACM Press,2005:365-383.
9Horwitz S,Reps T,Binkley D.Interprocedural Slicing Using Dependence Graphs[C]//Proceedings of ACM SIGPLAN Conference on Programming Language Design and Implementation.New York,USA:ACM Press,1988:26-60.
10Sridharan M,Fink S J,Bodík R.Thin Slicing[C]//Proceedings of ACM SIGPLAN 2007 Conference on Programming Language Design and Implementation.New York,USA:ACM Press,2007:112-122.

二级参考文献28

1Vcnkataramani G, Doudalis I, Solihin Y, Prvulovic M. FlexiTaint: A programmable accelerator for dynamic taint propagation. In: Carter J, ed. Proc. of the 14th Int'l Syrup. on High Performance Computer Architecture (HPCA). New York: ACM Press, 2008. 173-184. Idol: 10.1109/HPCA.2008.46S8637].
2Newsome J, Song D. Dynamic taint analysis for automatic detection, analysis, and signature generation of exploits on commodity software. In: Harder E, ed. Prec. of the Network and Distributed System Security Syrup. (NDSS 2005). San Diego: National Security Agency Press, 2005. 187-204.
3CVE terminology page. 2009. http://www.cve.mitre.org/about/terminology.html#vulnerability.
4Sekar R. An efficient black-box technique for defeating Web application attacks. In: Vigna G, ed. Proc. of the Network and Distributed System Security Syrup. (NDSS 2009). San Diego: National Security Agency Press, 2009.23-39.
5CVE and CCE statistics query page. 2009. http://web.nvd.nist.gov/view/vuln/statistics?execution=e 1 s 1.
6Open Web Application Security Project (OWASP). The ten most critical Web application security vulnerabilities. 2007. http://www.owasp.org/images/e/e8/OWASP_ Top_ 10 _2007.pdf.
7Lam MS, Martin MC, Livshits VB, Whaley J. Securing Web applications with static and dynamic information flow tracking. In: Hatcliff J, ed. Proc. of the 2008 ACM SIGPLAN Symp. on Partial Evaluation and Semantics-based Program Manipulation. New York: ACM Press, 2008.3-12. [doi: 10.1145/1328408.1328410].
8Xie YC, Chou A, Engler D. ARCHER: Using symbolic, path-sensitive analysis to detect memory access errors. In: Paakki J, ed. Proc. of the 9th European Software Engineering Conf. Held Jointly with 1 lth ACM SIGSOFT Int'l Symp. on Foundations of Software Engineering. New York: ACM Press, 2003. 327-336. [doi: 10.1145/940071.940115].
9Yin H, Song D, Egele M, Kruegel C, Kirda E. Panorama: Capturing system-wide information flow for malware detection and analysis. In: Ning P, ed. Proc. of the 14th ACM Conf. on Computer and Communications Security. New York: ACM Press, 2004. 116-127. [doi: 10.1145/1315245.1315261].
10Sabelfeld A, Myers AC. Language-Based information-flow security. IEEE Journal on Selected Areas in Communications, 2003, 21(1):5-19. [doi: 10.1109/JSAC.2002.806121].

共引文献20

1叶永宏,武东英,陈扬.一种基于细粒度污点分析的逆向平台[J].计算机工程与应用,2012,48(28):90-96. 被引量：2
2陆平,钱煜明,朱科支.一种分布式复杂消息处理引擎的设计与实现[J].中兴通讯技术,2013,19(4):58-62. 被引量：3
3孙浩,李会朋,曾庆凯.基于信息流的整数漏洞插装和验证[J].软件学报,2013,24(12):2767-2781. 被引量：9
4史大伟,袁天伟.一种粗细粒度结合的动态污点分析方法[J].计算机工程,2014,40(3):12-17. 被引量：9
5Ping Lu,Yuming Qian,Kezhi Zhu.Design and Implementation a Distributed Complex-Event Processing Engine[J].ZTE Communications,2014,12(1):52-56.
6舒辉,李政廉,康绯,张媛媛.基于环境智能匹配的恶意代码完整性分析方法[J].计算机工程与设计,2015,36(2):341-345.
7万志远,周波.基于静态信息流跟踪的输入验证漏洞检测方法[J].浙江大学学报（工学版）,2015,49(4):683-691. 被引量：4
8余学永,江国华.一种跨站脚本的检测方法[J].小型微型计算机系统,2015,36(8):1763-1768. 被引量：1
9傅建明,刘秀文,汤毅,李鹏伟.内存地址泄漏分析与防御[J].计算机研究与发展,2016,53(8):1829-1849. 被引量：13
10毛辰宇,郭帆,叶继华.面向用户意图的SQL注入检测方法[J].江西师范大学学报（自然科学版）,2016,40(4):386-391. 被引量：1

1吴雁军.MVC设计模式在J2EE程序中的应用[J].太原科技,2003(5):52-53. 被引量：6
2谭龙,郭长江.提高计算机网络可靠性的方法研究[J].消费电子,2014(2):132-132.
3韩旭,刘粉林,赵正.一种基于数据依赖关系的软件水印算法[J].信息工程大学学报,2015,16(2):245-250. 被引量：3
4王克明.结合用例,快速开发J2EE程序——利用用例图表达架构观点之四[J].程序员,2006(10):76-79.
5沈羽佳,韩松峰,刁海南,刘勇.基于数据依赖图的主域变量识别方法[J].计算机应用研究,2009,26(1):159-161.
6段磊,唐常杰,Guozhu Dong,杨宁,苟驰.基于显露模式的对比挖掘研究及应用进展[J].计算机应用,2012,32(2):304-308. 被引量：8
7杨旭,何虎,孙义和.分簇VLIW结构下利用数据依赖图优化调度的研究[J].计算机学报,2011,34(1):182-192. 被引量：1
8索朗德吉.计算机网络安全的新阶段分析[J].科技经济市场,2016(4):5-5. 被引量：1
9王鹏飞,张大方,缪力.包含异常处理的Java程序切片[J].计算机工程与科学,2005,27(4):22-24.
10黄新霆.电子病历:EMR≠EHR——电子病历建设阶段分析[J].中国计算机用户,2005(46):43-43. 被引量：2

计算机工程

2016年第6期

浏览历史

内容加载中请稍等...

基于依赖的J2EE程序污点分析方法

参考文献15

二级参考文献28

共引文献20

相关作者

相关机构

相关主题

浏览历史