Cited 0 time in
A dynamic taint analysis method of control-dependent data
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Kang, B | - |
| dc.contributor.author | Kim, T | - |
| dc.contributor.author | Kim, J | - |
| dc.contributor.author | Im, EG | - |
| dc.date.accessioned | 2022-07-15T04:18:19Z | - |
| dc.date.available | 2022-07-15T04:18:19Z | - |
| dc.date.issued | 2016-11 | - |
| dc.identifier.issn | 1344-8994 | - |
| dc.identifier.issn | 1344-8994 | - |
| dc.identifier.uri | https://scholarworks.bwise.kr/hanyang/handle/2021.sw.hanyang/153602 | - |
| dc.description.abstract | Dynamic taint analysis (DTA) is one of the primary methods of software analyzation. Vanilla DTA is the most straightforward approach, which uses conventional data flow without considering any control-dependent data, usually suffers under-tainting problem. In this paper, we propose a dynamic taint analysis method which mitigates under-tainting problem caused by control-dependent data. Our method detects the controls which are executed by tainted data, and marks the control-dependent data as tainted. We implement a system which represents our method, and experiment with 9 programs; 4 commodity software, and 5 Botnet malware. We also experiment with vanilla DTA and DYTAN's DTA, which demonstrate under-tainting and over-tainting problems, respectively. We evaluate the experimental results on two criteria: the number of tainted instructions, and tainting intensity. The evaluation shows that our system propagate taint marks to the control-dependent data for all 9 programs, and does not cause over-tainting problem. Although there are some discussions, we hope our approach will contribute to the software testing and malware mitigation. | - |
| dc.format.extent | 15 | - |
| dc.language | 영어 | - |
| dc.language.iso | ENG | - |
| dc.title | A dynamic taint analysis method of control-dependent data | - |
| dc.type | Article | - |
| dc.identifier.scopusid | 2-s2.0-85018326188 | - |
| dc.identifier.bibliographicCitation | Information, v.19, no.11, pp 5245 - 5259 | - |
| dc.citation.title | Information | - |
| dc.citation.volume | 19 | - |
| dc.citation.number | 11 | - |
| dc.citation.startPage | 5245 | - |
| dc.citation.endPage | 5259 | - |
| dc.type.docType | Article | - |
| dc.description.isOpenAccess | N | - |
| dc.description.journalRegisteredClass | scopus | - |
| dc.subject.keywordAuthor | Dynamic Taint Analysis | - |
| dc.subject.keywordAuthor | Control-Dependent Data | - |
| dc.subject.keywordAuthor | Software Testing | - |
| dc.subject.keywordAuthor | Malware Analysis | - |
| dc.identifier.url | https://www.proquest.com/docview/1897794321/E2110243EBFA4386PQ/36 | - |
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.
222, Wangsimni-ro, Seongdong-gu, Seoul, 04763, Korea+82-2-2220-1366
COPYRIGHT © 2024 HANYANG UNIVERSITY.
Certain data included herein are derived from the © Web of Science of Clarivate Analytics. All rights reserved.
You may not copy or re-distribute this material in whole or in part without the prior written consent of Clarivate Analytics.
