缓冲区溢出漏洞分析技术研究进展  被引量:23

Progress in Research on Buffer Overflow Vulnerability Analysis Technologies

在线阅读下载全文

作  者:邵思豪 高庆 马森 段富尧 马骁 张世琨[1,2] 胡津华 SHAO Si-Hao1,2, GAO Qing1,3, MA Sen1,2, DUAN Fu-Yao1,2, MA Xiao1,2, ZHANG Shi-Kun1,2, HU Jin-Hua4(1.Key Laboratory of High Confidence Software Technologies (Peking University), Ministry of Education, Beijing 100871, China; 2.National Engineering Research Center for Software Engineering (Peking University), Beijing 100871, China; 3.School of Electrical Engineering and Computer Science, Peking University, Beijing 100871, China; 4.Information Department, Tianjin Occupational Diseases Precaution and Therapeutic Hospital (Tianjin Workers' Hospital), Tianjin 300011, China)

机构地区:[1]高可信软件技术教育部重点实验室(北京大学),北京100871 [2]软件工程国家工程研究中心(北京大学),北京100871 [3]北京大学信息科学技术学院,北京100871 [4]天津市职业病防治院(天津市工人医院)信息科,天津300011

出  处:《软件学报》2018年第5期1179-1198,共20页Journal of Software

基  金:国家重点研发计划(2017YFB0802900);中国博士后科学基金(2017M620524);北京市自然科学基金(4182024)~~

摘  要:首先介绍了缓冲区溢出漏洞危害的严重性和广泛性,然后,从如何利用缓冲区溢出漏洞的角度,依次介绍了缓冲区溢出漏洞的定义、操作系统内存组织方式以及缓冲区溢出攻击方式.将缓冲区溢出分析技术分为3类:自动检测、自动修复以及运行时防护,并对每一类技术进行了介绍、分析和讨论.最后,对相关工作进行了总结,并讨论了缓冲区溢出分析领域未来可能的3个研究方向:(1)对二进制代码进行分析;(2)结合机器学习算法进行分析;(3)综合利用多种技术进行分析.First, in this paper, the breadth and risk of buffer overflow vulnerabilities are introduced. Then, from the aspect of how to exploit a buffer overflow vulnerability, an overview is provided on the definition of buffer overflow vulnerabilities, memory organization in operation systems, and classification of buffer overflow attacks. Based on the research, buffer overflow analysis technologies are classified into three categories: automatic detection, automatic repair, and run-time protection. Each types of technologies are introduced, analyzed and discussed according to the classification. Finally, three possible research directions in the field of buffer overflow vulnerability analysis are discussed: (1) analyzing binary code; (2) using machine learning algorithms; (3) combining multiple technologies for analysis.

关 键 词:缓冲区溢出漏洞 攻击 分析 误报率 漏报率 

分 类 号:TP311[自动化与计算机技术—计算机软件与理论]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象