• DocumentCode
    3018174
  • Title

    Automatic Vulnerability Locating in Binary Patches

  • Author

    Song, Yang ; Zhang, Yuqing ; Sun, Yingfei

  • Author_Institution
    Grad. Univ. of Chinese Acad. of Sci., Beijing, China
  • Volume
    2
  • fYear
    2009
  • fDate
    11-14 Dec. 2009
  • Firstpage
    474
  • Lastpage
    477
  • Abstract
    This paper proposes an approach to locate the patched vulnerability by analyzing the differences between two versions of an executable file. The approach comprises two parts: finding the differences and auditing the differences. To find the differences, a heuristically method is presented to compute an isomorphism between two callgraphs, based on the definitions of similarity between functions, and the similarity between graphs. The approach of auditing differences is also discussed in this paper. To show the advantages of our approach, we implemented a system called NBDS and apply it in four real-world patches. Experiment results show that our approach is able to locate patched vulnerability with high accuracy and performance.
  • Keywords
    security of data; NBDS system; binary patches; callgraphs; executable file difference analysis; isomorphism computation; vulnerability location; Computational intelligence; Computer aided instruction; Computer architecture; Delay effects; Flow graphs; NP-complete problem; Polynomials; Security; Software systems; Sun; audit; patch; security; vulnerability;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computational Intelligence and Security, 2009. CIS '09. International Conference on
  • Conference_Location
    Beijing
  • Print_ISBN
    978-1-4244-5411-2
  • Type

    conf

  • DOI
    10.1109/CIS.2009.273
  • Filename
    5376162
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3018174