Static Vulnerabilities Detection Based on Extended Vulnerability State Machine Model

Author

Liang, Bin

Author_Institution

Sch. of Inf., Renmin Univ. of China, Beijing

Volume

2

fYear

2009

fDate

25-26 April 2009

Firstpage

305

Lastpage

308

Abstract

A static vulnerability detection method based on an extended vulnerability state machine is proposed in this paper. In this method, the state space of state machine model is extended. The security state of a variable can be identified by a property set that may consist of multiple security-related properties rather than a single property. As results, fine-grained state transition is provided to support accurate recognition of program security-related behaviors. Specially, the recognition of validation checking is introduced to reduce false positives. Besides, a systematic discrimination mechanism for tainted data is constructed to prevent false negatives result from neglecting tainted data sources. The experimental results of a prototype system show that this method can effectively detect vulnerabilities in software systems with obviously lower false positive than existing methods, and avoid some serious false negative.

Keywords

program diagnostics; security of data; extended vulnerability state machine model; fine-grained state transition; program security-related behavior recognition; software systems; static vulnerabilities detection; systematic discrimination mechanism; Computer networks; Data security; Detectors; Information security; Laboratories; Software prototyping; Software systems; State-space methods; Virtual manufacturing; Wireless communication; state machine; static analysis; vulnerabilities detection;

fLanguage

English

Publisher

ieee

Conference_Titel

Networks Security, Wireless Communications and Trusted Computing, 2009. NSWCTC '09. International Conference on

Conference_Location

Wuhan, Hubei

Print_ISBN

978-1-4244-4223-2

Type

conf

DOI

10.1109/NSWCTC.2009.10

Filename

4908466