Automatic detection of integer sign vulnerabilities

Author

Liang, Bin ; Liu, Hui ; Shi, Wenchang ; Shan, Zhiyong

Author_Institution

Key Lab. of Data Eng. & Knowledge Eng., Renmin Univ. of China, Beijing

fYear

2008

fDate

20-23 June 2008

Firstpage

1204

Lastpage

1209

Abstract

The integer sign vulnerability is a comparatively new and subtle type of vulnerabilities, they can compromise system security. Especially, if a sign vulnerability occurs in operating system kernel, it may result in very serious invalid read/write operations to kernel memory area. Unfortunately, little attention has been paid to static detecting them automatically. This paper presents a novel approach to detecting sign vulnerabilities in Linux kernel using type qualifier technique. We introduce three pairs of type qualifier and corresponding lattices to identify some key kernel data and relationships between them. Based on an extended type inference tool, we are able to effectively detect known and unknown sign vulnerabilities from elaborately preprocessed Linux kernel files. Our experiences demonstrate that type qualifier technique can be applied to detect sign vulnerabilities effectively.

Keywords

Linux; operating system kernels; reasoning about programs; security of data; Linux kernel; automatic integer sign vulnerability detection; operating system kernel; type inference tool; type qualifier technique; Automation; Buffer overflow; Data engineering; Kernel; Knowledge engineering; Laboratories; Lattices; Linux; Operating systems; Read-write memory; sign vulnerability; static analysis; type qualifier;

fLanguage

English

Publisher

ieee

Conference_Titel

Information and Automation, 2008. ICIA 2008. International Conference on

Conference_Location

Changsha

Print_ISBN

978-1-4244-2183-1

Electronic_ISBN

978-1-4244-2184-8

Type

conf

DOI

10.1109/ICINFA.2008.4608183

Filename

4608183