Title :
Automatic detection of integer sign vulnerabilities
Author :
Liang, Bin ; Liu, Hui ; Shi, Wenchang ; Shan, Zhiyong
Author_Institution :
Key Lab. of Data Eng. & Knowledge Eng., Renmin Univ. of China, Beijing
Abstract :
The integer sign vulnerability is a comparatively new and subtle type of vulnerabilities, they can compromise system security. Especially, if a sign vulnerability occurs in operating system kernel, it may result in very serious invalid read/write operations to kernel memory area. Unfortunately, little attention has been paid to static detecting them automatically. This paper presents a novel approach to detecting sign vulnerabilities in Linux kernel using type qualifier technique. We introduce three pairs of type qualifier and corresponding lattices to identify some key kernel data and relationships between them. Based on an extended type inference tool, we are able to effectively detect known and unknown sign vulnerabilities from elaborately preprocessed Linux kernel files. Our experiences demonstrate that type qualifier technique can be applied to detect sign vulnerabilities effectively.
Keywords :
Linux; operating system kernels; reasoning about programs; security of data; Linux kernel; automatic integer sign vulnerability detection; operating system kernel; type inference tool; type qualifier technique; Automation; Buffer overflow; Data engineering; Kernel; Knowledge engineering; Laboratories; Lattices; Linux; Operating systems; Read-write memory; sign vulnerability; static analysis; type qualifier;
Conference_Titel :
Information and Automation, 2008. ICIA 2008. International Conference on
Conference_Location :
Changsha
Print_ISBN :
978-1-4244-2183-1
Electronic_ISBN :
978-1-4244-2184-8
DOI :
10.1109/ICINFA.2008.4608183
