Taint propagation path analysis based on program dependency

Y. Wang; C. Wang; C. Z. Hu; C. Shan

doi:10.1201/b18049-38

Taint propagation path analysis based on program dependency

Y. Wang, C. Wang, C. Z. Hu, C. Shan

科研成果: 书/报告/会议事项章节 › 会议稿件 › 同行评审

1 引用（Scopus）

摘要

Taint propagation path analysis is an important pre-processing part to software vulnerability detection. This paper presents a static taint propagation path analysis method based on program dependency. After transforming the source code to the SSA (Static Single Assignment) form, we make a program dependency analysis, which consists of data dependency analysis within basic blocks, control dependency analysis between basic blocks, and Phi function dependency analysis. In particular, the branch control variables calculation from control dependency analysis and Phi function dependency analysis can transform the dependency between basic blocks into dependency between variables. As a result, we obtain the global program variable dependency graph, based on which, we can further find taint propagation paths through marking tainted data.We have implemented the method on the LLVM (Low Level Virtual Machine) compiler, and the experiment results show its validity.

源语言	英语
主期刊名	Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014
编辑	Dawei Zheng
出版商	CRC Press/Balkema
页	159-164
页数	6
ISBN（印刷版）	9781138026537
DOI	https://doi.org/10.1201/b18049-38
出版状态	已出版 - 2015
活动	International Conference on Future Communication, Information and Computer Science, FCICS 2014 - Beijing, 中国期限: 22 5月 2014 → 23 5月 2014

出版系列

姓名	Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014

会议

会议	International Conference on Future Communication, Information and Computer Science, FCICS 2014
国家/地区	中国
市	Beijing
时期	22/05/14 → 23/05/14

访问文件

10.1201/b18049-38

其它文件与链接

链接到 Scopus 的出版物

引用此

Wang, Y., Wang, C., Hu, C. Z., & Shan, C. (2015). Taint propagation path analysis based on program dependency. 在 D. Zheng (编辑), Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014 (页码 159-164). (Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014). CRC Press/Balkema. https://doi.org/10.1201/b18049-38

Wang, Y. ; Wang, C. ; Hu, C. Z. 等. / Taint propagation path analysis based on program dependency. Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014. 编辑 / Dawei Zheng. CRC Press/Balkema, 2015. 页码 159-164 (Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014).

@inproceedings{82bc69a8f4c9426794eebd8eb80c3380,

title = "Taint propagation path analysis based on program dependency",

abstract = "Taint propagation path analysis is an important pre-processing part to software vulnerability detection. This paper presents a static taint propagation path analysis method based on program dependency. After transforming the source code to the SSA (Static Single Assignment) form, we make a program dependency analysis, which consists of data dependency analysis within basic blocks, control dependency analysis between basic blocks, and Phi function dependency analysis. In particular, the branch control variables calculation from control dependency analysis and Phi function dependency analysis can transform the dependency between basic blocks into dependency between variables. As a result, we obtain the global program variable dependency graph, based on which, we can further find taint propagation paths through marking tainted data.We have implemented the method on the LLVM (Low Level Virtual Machine) compiler, and the experiment results show its validity.",

keywords = "Branch control variables, Control dependency, Data dependency, Phi function, SSA, Taint propagation path analysis, Value dependency graph",

author = "Y. Wang and C. Wang and Hu, {C. Z.} and C. Shan",

note = "Publisher Copyright: {\textcopyright} 2015 Taylor & Francis Group, London.; International Conference on Future Communication, Information and Computer Science, FCICS 2014 ; Conference date: 22-05-2014 Through 23-05-2014",

year = "2015",

doi = "10.1201/b18049-38",

language = "English",

isbn = "9781138026537",

series = "Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014",

publisher = "CRC Press/Balkema",

pages = "159--164",

editor = "Dawei Zheng",

booktitle = "Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014",

}

Wang, Y , Wang, C , Hu, CZ & Shan, C 2015, Taint propagation path analysis based on program dependency. 在 D Zheng (编辑), Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014. Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014, CRC Press/Balkema, 页码 159-164, International Conference on Future Communication, Information and Computer Science, FCICS 2014, Beijing, 中国, 22/05/14. https://doi.org/10.1201/b18049-38

Taint propagation path analysis based on program dependency. / Wang, Y.; Wang, C.; Hu, C. Z. 等.
Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014. 编辑 / Dawei Zheng. CRC Press/Balkema, 2015. 页码 159-164 (Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014).

科研成果: 书/报告/会议事项章节 › 会议稿件 › 同行评审

TY - GEN

T1 - Taint propagation path analysis based on program dependency

AU - Wang, Y.

AU - Wang, C.

AU - Hu, C. Z.

AU - Shan, C.

PY - 2015

Y1 - 2015

N2 - Taint propagation path analysis is an important pre-processing part to software vulnerability detection. This paper presents a static taint propagation path analysis method based on program dependency. After transforming the source code to the SSA (Static Single Assignment) form, we make a program dependency analysis, which consists of data dependency analysis within basic blocks, control dependency analysis between basic blocks, and Phi function dependency analysis. In particular, the branch control variables calculation from control dependency analysis and Phi function dependency analysis can transform the dependency between basic blocks into dependency between variables. As a result, we obtain the global program variable dependency graph, based on which, we can further find taint propagation paths through marking tainted data.We have implemented the method on the LLVM (Low Level Virtual Machine) compiler, and the experiment results show its validity.

AB - Taint propagation path analysis is an important pre-processing part to software vulnerability detection. This paper presents a static taint propagation path analysis method based on program dependency. After transforming the source code to the SSA (Static Single Assignment) form, we make a program dependency analysis, which consists of data dependency analysis within basic blocks, control dependency analysis between basic blocks, and Phi function dependency analysis. In particular, the branch control variables calculation from control dependency analysis and Phi function dependency analysis can transform the dependency between basic blocks into dependency between variables. As a result, we obtain the global program variable dependency graph, based on which, we can further find taint propagation paths through marking tainted data.We have implemented the method on the LLVM (Low Level Virtual Machine) compiler, and the experiment results show its validity.

KW - Branch control variables

KW - Control dependency

KW - Data dependency

KW - Phi function

KW - SSA

KW - Taint propagation path analysis

KW - Value dependency graph

UR - http://www.scopus.com/inward/record.url?scp=84940473809&partnerID=8YFLogxK

U2 - 10.1201/b18049-38

DO - 10.1201/b18049-38

M3 - Conference contribution

AN - SCOPUS:84940473809

SN - 9781138026537

T3 - Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014

SP - 159

EP - 164

BT - Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014

A2 - Zheng, Dawei

PB - CRC Press/Balkema

T2 - International Conference on Future Communication, Information and Computer Science, FCICS 2014

Y2 - 22 May 2014 through 23 May 2014

ER -

Wang Y , Wang C , Hu CZ , Shan C. Taint propagation path analysis based on program dependency. 在 Zheng D, 编辑, Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014. CRC Press/Balkema. 2015. 页码 159-164. (Future Communication, Information and Computer Science - Proceedings of the International Conference on Future Communication, Information and Computer Science, FCICS 2014). doi: 10.1201/b18049-38

Taint propagation path analysis based on program dependency

摘要

出版系列

会议

访问文件

其它文件与链接

指纹

引用此