摘要
The letter proposes a novel binary vulnerability analyzer for executable programs that is based on the Hidden Markov Model. A vulnerability instruction library (VIL) is primarily constructed by collecting binary frames located by double precision analysis. Executable programs are then converted into structurized code sequences with the VIL. The code sequences are essentially context-sensitive, which can be modeled by Hidden Markov Model (HMM). Finally, the HMM based vulnerability analyzer is built to recognize potential vulnerabilities of executable programs. Experimental results show the proposed approach achieves lower false positive/negative rate than latest static analyzers.
| 源语言 | 英语 |
|---|---|
| 页(从-至) | 3410-3413 |
| 页数 | 4 |
| 期刊 | IEICE Transactions on Information and Systems |
| 卷 | E93-D |
| 期 | 12 |
| DOI | |
| 出版状态 | 已出版 - 12月 2010 |