指针分析技术驱动的物联网漏洞挖掘方法  

A Vulnerability Mining Method for the Internet of Things Driven by Pointer Analysis Technology

在线阅读下载全文

作  者:时启亮 沙乐天 潘家晔[1] SHI Qiliang;SHA Letian;PAN Jiaye(School of Computer Science,Nanjing University of Posts and Telecommunications;Jiangsu High Technology Research Key Laboratory for Wireless Sensor Networks,Nanjing 210023,China)

机构地区:[1]南京邮电大学计算机学院 [2]江苏省无线传感网高技术研究重点实验室,江苏南京210023

出  处:《软件导刊》2025年第3期109-118,共10页Software Guide

基  金:国家自然科学基金面上项目(62072253)。

摘  要:物联网漏洞挖掘主要面向源码未知的二进制程序,但存在大量人工审计工作,迫切需要一种高度自动化的流程来进行引导。在静态分析技术领域,指针分析作为一项底层技术,以其高度自动化的分析流程和出色的效果展现出适应多种应用场景的潜力。借助指针分析的优势,依托于反汇编平台Ghidra,对其引入的P-code进行封装形成PIR;以PIR为基础,设计符合漏洞挖掘需求的指针分析算法和污点分析算法,最终实现了一个可扩展的分析框架。针对CWE78漏洞的检测性能测试结果显示,所提框架正确检测出大部分漏洞,与现有漏洞分析工具相比,漏洞检出率提升86.2%,时间效率提升38.7%。该框架不仅能够验证已知漏洞,而且具备发现新漏洞的能力。IoT vulnerability mining mainly targets binary programs with unknown source code,but there is a significant amount of manual auditing work that urgently requires a highly automated process for guidance.In the field of static analysis technology,pointer analysis,as an underlying technology,has shown the potential to adapt to various application scenarios with its highly automated analysis process and excellent results.By leveraging the advantages of pointer analysis and relying on the disassembly platform Ghidra,the introduced P-code is encapsulated to form PIR;Then,based on PIR,we designed pointer analysis algorithms and taint analysis algorithms that meet the requirements of vulnerability mining,and ultimately implemented an extensible analysis framework.The performance test results for CWE78 vulnerability detection show that the proposed framework correctly detects most vulnerabilities.Compared with existing vulnerability analysis tools,the vulnerability detection rate has increased by 86.2%and the time efficiency has increased by 38.7%.This framework not only verifies known vulnerabilities,but also has the ability to discover new vulnerabilities.

关 键 词:漏洞挖掘 P-CODE 指针分析 污点分析 

分 类 号:TP311[自动化与计算机技术—计算机软件与理论]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象