Eliminating human specification in static analysis

Authors:
Ying Kong;Yuqing Zhang;Qixu Liu
Affiliations:
National Computer Network Intrusion Protection Center, GUCAS, Beijing, China and State Key Laboratory of Information Security, GUCAS, Beijing, China;National Computer Network Intrusion Protection Center, GUCAS, Beijing, China and State Key Laboratory of Information Security, GUCAS, Beijing, China;National Computer Network Intrusion Protection Center, GUCAS, Beijing, China and State Key Laboratory of Information Security, GUCAS, Beijing, China
Venue:
RAID'10 Proceedings of the 13th international conference on Recent advances in intrusion detection
Year:
2010

Citing 3
Cited 0

Thin slicing

Proceedings of the 2007 ACM SIGPLAN conference on Programming language design and implementation
Finding security vulnerabilities in java applications with static analysis

SSYM'05 Proceedings of the 14th conference on USENIX Security Symposium - Volume 14
TAJ: effective taint analysis of web applications

Proceedings of the 2009 ACM SIGPLAN conference on Programming language design and implementation

Quantified Score

Hi-index	0.00

Visualization

Abstract

We present a totally automatic static analysis approach for detecting code injection vulnerabilities in web applications on top of JSP/servlet framework. Our approach incorporates origin and destination information of data passing in information flows, and developer's beliefs on vulnerable information flows extracted via statistical analysis and pattern recognition technique, to infer specifications for flaws without any human participation. According to experiment, our algorithm is proved to be able to cover the most comprehensive range of attack vectors and lessen the manual labor greatly.