AutoISES: automatically inferring security specifications and detecting violations

Authors:
Lin Tan;Xiaolan Zhang;Xiao Ma;Weiwei Xiong;Yuanyuan Zhou
Affiliations:
University of Illinois, Urbana-Champaign;IBM T.J. Watson Research Center;University of Illinois, Urbana-Champaign and Pattern Insight Inc.;University of Illinois, Urbana-Champaign;University of Illinois, Urbana-Champaign and Pattern Insight Inc.
Venue:
SS'08 Proceedings of the 17th conference on Security symposium
Year:
2008

Citing 22
Cited 17

A theory of type qualifiers

Proceedings of the ACM SIGPLAN 1999 conference on Programming language design and implementation
Bandera: extracting finite-state models from Java source code

Proceedings of the 22nd international conference on Software engineering
Quickly detecting relevant program invariants

Proceedings of the 22nd international conference on Software engineering
Adaptive Intrusion Detection: A Data Mining Approach

Artificial Intelligence Review - Issues on the application of data mining
A simple method for extracting models for protocol code

ISCA '01 Proceedings of the 28th annual international symposium on Computer architecture
Bugs as deviant behavior: a general approach to inferring errors in systems code

SOSP '01 Proceedings of the eighteenth ACM symposium on Operating systems principles
The SLAM project: debugging system software via static analysis

POPL '02 Proceedings of the 29th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Mining specifications

POPL '02 Proceedings of the 29th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
A system and language for building system-specific, static analyses

PLDI '02 Proceedings of the ACM SIGPLAN 2002 Conference on Programming language design and implementation
Runtime verification of authorization hook placement for the linux security modules framework

Proceedings of the 9th ACM conference on Computer and communications security
MOPS: an infrastructure for examining security properties of software

Proceedings of the 9th ACM conference on Computer and communications security
Using CQUAL for Static Analysis of Authorization Hook Placement

Proceedings of the 11th USENIX Security Symposium
Linux Security Modules: General Security Support for the Linux Kernel

Proceedings of the 11th USENIX Security Symposium
Buffer overrun detection using linear programming and static analysis

Proceedings of the 10th ACM conference on Computer and communications security
Consistency analysis of authorization hook placement in the Linux security modules framework

ACM Transactions on Information and System Security (TISSEC)
PR-Miner: automatically extracting implicit programming rules and detecting violations in large software code

Proceedings of the 10th European software engineering conference held jointly with 13th ACM SIGSOFT international symposium on Foundations of software engineering
Retrofitting Legacy Code for Authorization Policy Enforcement

SP '06 Proceedings of the 2006 IEEE Symposium on Security and Privacy
Mining Security-Sensitive Operations in Legacy Code Using Concept Analysis

ICSE '07 Proceedings of the 29th international conference on Software Engineering
An overview of the saturn project

PASTE '07 Proceedings of the 7th ACM SIGPLAN-SIGSOFT workshop on Program analysis for software tools and engineering
Static specification mining using automata-based abstractions

Proceedings of the 2007 international symposium on Software testing and analysis
MUVI: automatically inferring multi-variable access correlations and detecting related semantic and concurrency bugs

Proceedings of twenty-first ACM SIGOPS symposium on Operating systems principles
Inferring higher level policies from firewall rules

LISA'07 Proceedings of the 21st conference on Large Installation System Administration Conference

Computer meteorology: monitoring compute clouds

HotOS'09 Proceedings of the 12th conference on Hot topics in operating systems
Trust and protection in the Illinois browser operating system

OSDI'10 Proceedings of the 9th USENIX conference on Operating systems design and implementation
Toward automated detection of logic vulnerabilities in web applications

USENIX Security'10 Proceedings of the 19th USENIX conference on Security
A security policy oracle: detecting security holes using multiple API implementations

Proceedings of the 32nd ACM SIGPLAN conference on Programming language design and implementation
Operating system interface obfuscation and the revealing of hidden operations

DIMVA'11 Proceedings of the 8th international conference on Detection of intrusions and malware, and vulnerability assessment
Static detection of access control vulnerabilities in web applications

SEC'11 Proceedings of the 20th USENIX conference on Security
WAPTEC: whitebox analysis of web applications for parameter tampering exploit construction

Proceedings of the 18th ACM conference on Computer and communications security
RoleCast: finding missing security checks when you do not know what checks are

Proceedings of the 2011 ACM international conference on Object oriented programming systems languages and applications
SAFERPHP: finding semantic vulnerabilities in PHP applications

Proceedings of the ACM SIGPLAN 6th Workshop on Programming Languages and Analysis for Security
Leveraging "choice" to automate authorization hook placement

Proceedings of the 2012 ACM conference on Computer and communications security
Hi-Fi: collecting high-fidelity whole-system provenance

Proceedings of the 28th Annual Computer Security Applications Conference
WYSIWIB: exploiting fine-grained program structure in a scriptable API-usage protocol-finding process

Software—Practice & Experience
LASE: locating and applying systematic edits by learning from examples

Proceedings of the 2013 International Conference on Software Engineering
Chucky: exposing missing checks in source code for vulnerability discovery

Proceedings of the 2013 ACM SIGSAC conference on Computer & communications security
Automatic mediation of privacy-sensitive resource access in smartphone applications

SEC'13 Proceedings of the 22nd USENIX conference on Security
A Systematic Survey of Self-Protecting Software Systems

ACM Transactions on Autonomous and Adaptive Systems (TAAS) - Special Section on Best Papers from SEAMS 2012
Automated detection of parameter tampering opportunities and vulnerabilities in web applications

Journal of Computer Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

The importance of software security cannot be overstated. In the past, researchers have applied program analysis techniques to automatically detect security vulnerabilities and verify security properties. However, such techniques have limited success in reality because they require manually provided code-level security specifications. Manually writing and generating these code-level security specifications are tedious and error-prone. Additionally, they seldom exist in production software. In this paper, we propose a novel method and tool, called AutoISES, which Automatically Infers Security Specifications by statically analyzing source code, and then directly use these specifications to automatically detect security violations. Our experiments with the Linux kernel and Xen demonstrated the effectiveness of this approach - AutoISES automatically generated 84 security specifications and detected 8 vulnerabilities in the Linux kernel and Xen, 7 of which have already been confirmed by the corresponding developers.