Skip to main content
Journal ArticleOPEN ACCESS

An automated vulnerability detection and remediation method for software security

Sustainability (Switzerland) (2018) 10(5)
DOI: 10.3390/su10051652
15Citations
Citations of this article
65Readers
Mendeley users who have this article in their library.

Abstract

As hacking techniques become more sophisticated, vulnerabilities have been gradually increasing. Between 2010 and 2015, around 80,000 vulnerabilities were newly registered in the CVE (Common Vulnerability Enumeration), and the number of vulnerabilities has continued to rise. While the number of vulnerabilities is increasing rapidly, the response to them relies on manual analysis, resulting in a slow response speed. It is necessary to develop techniques that can detect and patch vulnerabilities automatically. This paper introduces a trend of techniques and tools related to automated vulnerability detection and remediation. We propose an automated vulnerability detection method based on binary complexity analysis to prevent a zero-day attack. We also introduce an automatic patch generation method through PLT/GOT table modification to respond to zero-day vulnerabilities.

Figures

  • Table 1. Automated Vulnerability Detection Tool Comparison.
  • Table 2. Binary Hardening technique comparison.
  • Figure 1. Automated Vulnerability Detection and Remediation Architecture. Figure 1. Automated Vulnerability Detection and Remediation Architecture.
  • Table 3. List of Vulnerable Functions by Vulnerability Type.
  • Table 4. Halstead Complexity Metrics.
  • Table 5. Functions for Vulnerability Scoring.
  • Figure 2. ELF file structure modification. Figure 2. ELF file structure modification.
  • Figure 3. Secure_libs_loader operation process.

Author supplied keywords

References Powered by Scopus

Symbolic Execution and Program Testing

Communications of the ACM
2258Citations
N/AReaders
Get full text

An empirical study of the Reliability of UNIX Utilities

Communications of the ACM
900Citations
N/AReaders
Get full text

Driller: Augmenting Fuzzing Through Selective Symbolic Execution

23rd Annual Network and Distributed System Security Symposium, NDSS 2016
775Citations
N/AReaders
Get full text
View more at Scopus

Cited by Powered by Scopus

Role of Artificial Intelligence in the Internet of Things (IoT) cybersecurity

Discover Internet of Things
155Citations
N/AReaders
Get full text

The rise of software vulnerability: Taxonomy of software vulnerabilities detection and machine learning approaches

Journal of Network and Computer Applications
91Citations
N/AReaders
Get full text

A deep learning based static taint analysis approach for IoT software vulnerability location

Measurement: Journal of the International Measurement Confederation
47Citations
N/AReaders
Get full text
View more at Scopus

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Cite

CITATION STYLE

APA

Jurn, J., Kim, T., & Kim, H. (2018). An automated vulnerability detection and remediation method for software security. Sustainability (Switzerland), 10(5). https://doi.org/10.3390/su10051652

Readers over time

‘18‘19‘20‘21‘22‘23‘24‘250481216

Readers' Seniority

Tooltip

PhD / Post grad / Masters / Doc 30

83%

Researcher 4

11%

Lecturer / Post doc 2

6%

Readers' Discipline

Tooltip

Computer Science 31

82%

Engineering 5

13%

Agricultural and Biological Sciences 1

3%

Veterinary Science and Veterinary Medic... 1

3%

Article Metrics

Tooltip
Mentions
Blog Mentions: 3
News Mentions: 1

Save time finding and organizing research with Mendeley

Sign up for free
0