Title :
Static Vulnerabilities Detection Based on Extended Vulnerability State Machine Model
Author_Institution :
Sch. of Inf., Renmin Univ. of China, Beijing
Abstract :
A static vulnerability detection method based on an extended vulnerability state machine is proposed in this paper. In this method, the state space of state machine model is extended. The security state of a variable can be identified by a property set that may consist of multiple security-related properties rather than a single property. As results, fine-grained state transition is provided to support accurate recognition of program security-related behaviors. Specially, the recognition of validation checking is introduced to reduce false positives. Besides, a systematic discrimination mechanism for tainted data is constructed to prevent false negatives result from neglecting tainted data sources. The experimental results of a prototype system show that this method can effectively detect vulnerabilities in software systems with obviously lower false positive than existing methods, and avoid some serious false negative.
Keywords :
program diagnostics; security of data; extended vulnerability state machine model; fine-grained state transition; program security-related behavior recognition; software systems; static vulnerabilities detection; systematic discrimination mechanism; Computer networks; Data security; Detectors; Information security; Laboratories; Software prototyping; Software systems; State-space methods; Virtual manufacturing; Wireless communication; state machine; static analysis; vulnerabilities detection;
Conference_Titel :
Networks Security, Wireless Communications and Trusted Computing, 2009. NSWCTC '09. International Conference on
Conference_Location :
Wuhan, Hubei
Print_ISBN :
978-1-4244-4223-2
DOI :
10.1109/NSWCTC.2009.10
