Litcius/Paper detail

Detecting Vulnerabilities in Linux-Based Embedded Firmware with SSE-Based On-Demand Alias Analysis

Kai Cheng, Yaowen Zheng, Tao Liu, Le Guan, Peng Liu, Hong Li, Hongsong Zhu, YE Ke-jiang, Limin Sun

202329 citationsDOI

Abstract

Although the importance of using static taint analysis to detect taint-style vulnerabilities in Linux-based embedded firmware is widely recognized, existing approaches are plagued by following major limitations: (a) Existing works cannot properly handle indirect call on the path from attacker-controlled sources to security-sensitive sinks, resulting in lots of false negatives. (b) They employ heuristics to identify mediate taint source and it is not accurate enough, which leads to high false positives.

Topics & Concepts

Computer scienceFirmwareFalse positive paradoxRootkitTaint checkingStatic analysisHeuristicsAliasLinux kernelEmbedded systemOperating systemComputer securityMalwareSoftwareData miningProgramming languageArtificial intelligenceAdvanced Malware Detection TechniquesSecurity and Verification in ComputingDigital and Cyber Forensics