Title :
Precise Static Analysis of Binaries by Extracting Relational Information
Author :
Sepp, Alexander ; Mihaila, Bogdan ; Simon, Axel
Author_Institution :
Lehrstuhl fur Inf. 2, Tech. Univ. Munich, Munich, Germany
Abstract :
While the reconstruction of the control-flow graph of a binary has received wide attention, the challenge of categorizing code into defect-free and possibly incorrect remains a challenge for current static analyses. We present the intermediate language RREIL and a corresponding analysis framework that is able to infer precise numeric information on variables without resorting to an expensive analysis at the bit-level. Specifically, we propose a hierarchy of three interfaces to abstract domains, namely for inferring memory layout, bit-level information and numeric information. Our framework can be easily enriched with new abstract domains at each level. We demonstrate the extensibility of our framework by detailing a novel acceleration technique (a so-called widening) as an abstract domain that helps to find precise fix points of loops.
Keywords :
program diagnostics; programming languages; RREIL intermediate language; abstract domain; binary control-flow graph; binary static analysis; bit-level analysis; bit-level information; memory layout; numeric information; relational information extraction; widening technique; Layout; Numerical models; Registers; Security; Semantics; Vectors; Wrapping; abstract interpretation; widening;
Conference_Titel :
Reverse Engineering (WCRE), 2011 18th Working Conference on
Conference_Location :
Limerick
Print_ISBN :
978-1-4577-1948-6
DOI :
10.1109/WCRE.2011.50
