Abstract
Nowadays, embedded systems have been widely deployed in numerous applications. Firmwares in embedded systems are typically custom-built to provide a set of very specialized functionalities. They are prone to taint-style vulnerability with a high probability, but traditional whole-program analysis has low efficiency in discovering the vulnerability. In this paper, we propose a two-stage mechanism to accelerate discovery of taint-style vulnerabilities in embedded firmware: first recognizing protocol parsers that are prone to taint-style vulnerabilities from firmware, and then constructing program dependence graph for security sensitive sinks to analyze their input source. We conduct a real-world experiment to verify the mechanism. The result indicates that the mechanism can help find taint-style vulnerabilities in less time compared with whole-program analysis.
Author supplied keywords
Cite
CITATION STYLE
Zheng, Y., Cheng, K., Li, Z., Pan, S., Zhu, H., & Sun, L. (2016). A lightweight method for accelerating discovery of taint-style vulnerabilities in embedded systems. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 9977 LNCS, pp. 27–36). Springer Verlag. https://doi.org/10.1007/978-3-319-50011-9_3
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
