Title :
Automatic Vulnerability Locating in Binary Patches
Author :
Song, Yang ; Zhang, Yuqing ; Sun, Yingfei
Author_Institution :
Grad. Univ. of Chinese Acad. of Sci., Beijing, China
Abstract :
This paper proposes an approach to locate the patched vulnerability by analyzing the differences between two versions of an executable file. The approach comprises two parts: finding the differences and auditing the differences. To find the differences, a heuristically method is presented to compute an isomorphism between two callgraphs, based on the definitions of similarity between functions, and the similarity between graphs. The approach of auditing differences is also discussed in this paper. To show the advantages of our approach, we implemented a system called NBDS and apply it in four real-world patches. Experiment results show that our approach is able to locate patched vulnerability with high accuracy and performance.
Keywords :
security of data; NBDS system; binary patches; callgraphs; executable file difference analysis; isomorphism computation; vulnerability location; Computational intelligence; Computer aided instruction; Computer architecture; Delay effects; Flow graphs; NP-complete problem; Polynomials; Security; Software systems; Sun; audit; patch; security; vulnerability;
Conference_Titel :
Computational Intelligence and Security, 2009. CIS '09. International Conference on
Conference_Location :
Beijing
Print_ISBN :
978-1-4244-5411-2
DOI :
10.1109/CIS.2009.273
