Research On Vulnerability Detection Of Binary Program Based On Dynamic Taint Analysis

At present,the security threats from network and software system have become increasingly intensified,The situation of defending against attack become more and more severe.Dynamic Taint Analysis,referred to as DTA,can mark the external data as tainted,trace the propagation of non-trusted tainted data,detect it's illegal use.The current dynamic taint analysis technique has two shortcomings: accuracy and performance.The shortcoming of accuracy mainly reflected in false positives caused by “over-tainting”,and false negatives caused by “under-tainting”.The shortcoming of performance mainly reflected in the performance overhead caused by the binary dynamic analysis platform.In order to solve the above problem,this thesis designs and implements a dynamic taint analysis framework.Combined with the dynamic symbolic execution technique,proposes and implements the automatic path generation method for dynamic taint analysis system.The major work is listed as follows:(1)To improve the accuracy of the vulnerability detection,a vulnerability detection of binary program based on fine-grained taint analysis technology studied.Proposes a dynamic taint analysis method which combined online detection and offline backward analysis,and based on this method,design and implement a binary oriented vulnerability detection DTA prototype system VDA-DTA,improves the accuracy of the existing taint analysis techniques from three aspects: taint mark,taint propagation and taint detection,effectively improve the accuracy of the vulnerability detection.(2)Aiming at the shortcoming of serious performance loss in the current taint analysis platform,Proposes and implements the automatic path generation method for dynamic taint analysis system,using the binary code base block as a unit to measure the coverage rate of the test case.By combining symbol execution and constraint solving techniques,generates new test cases which will cover other paths by constraint solving.Implements the parallel execution of the test cases by using virtualization technology,which can effectively improve the efficiency of dynamic analysis.