Framework for safe reuse of software binaries

Authors:
Ramakrishnan Venkitaraman;Gopal Gupta
Affiliations:
Applied Logic, Programming-Languages and Systems (ALPS) Laboratory, Department of Computer Science, The University of Texas at Dallas;Applied Logic, Programming-Languages and Systems (ALPS) Laboratory, Department of Computer Science, The University of Texas at Dallas
Venue:
ICDCIT'04 Proceedings of the First international conference on Distributed Computing and Internet Technology
Year:
2004

Citing 15
Cited 0

Compilers: principles, techniques, and tools

Compilers: principles, techniques, and tools
A safe approximate algorithm for interprocedural aliasing

PLDI '92 Proceedings of the ACM SIGPLAN 1992 conference on Programming language design and implementation
Software reuse: metrics and models

ACM Computing Surveys (CSUR)
Alias analysis of executable code

POPL '98 Proceedings of the 25th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Demand-driven pointer analysis

Proceedings of the ACM SIGPLAN 2001 conference on Programming language design and implementation
Abstract interpretation: a unified lattice model for static analysis of programs by construction or approximation of fixpoints

POPL '77 Proceedings of the 4th ACM SIGACT-SIGPLAN symposium on Principles of programming languages
Interprocedural data flow analysis in the presence of pointers, procedure variables, and label variables

POPL '80 Proceedings of the 7th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Abstract Interpretation of Declarative Languages

Abstract Interpretation of Declarative Languages
Computers and Intractability: A Guide to the Theory of NP-Completeness

Computers and Intractability: A Guide to the Theory of NP-Completeness
Speculative Alias Analysis for Executable Code

Proceedings of the 2002 International Conference on Parallel Architectures and Compilation Techniques
Static Analysis of Binary Code to Isolate Malicious Behaviors

WETICE '99 Proceedings of the 8th Workshop on Enabling Technologies on Infrastructure for Collaborative Enterprises
Improving Computer Security Using Extended Static Checking

SP '02 Proceedings of the 2002 IEEE Symposium on Security and Privacy
Static analysis and computer security: new techniques for software assurance

Static analysis and computer security: new techniques for software assurance
Static program analysis of embedded executable assembly code

Proceedings of the 2004 international conference on Compilers, architecture, and synthesis for embedded systems
Static analysis of executables to detect malicious patterns

SSYM'03 Proceedings of the 12th conference on USENIX Security Symposium - Volume 12

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper we consider reusability of software component binaries Reuse of code at the binary level is important because usually only the machine code for system components is available; vendors do not want to share their source code for proprietary reasons We develop necessary and sufficient conditions for ensuring that software binaries are reusable and relate them to the coding standards that have been developed in the industry to ensure binary code reusability These coding standards, in essence, discourage the (i) use of hard-coded pointers, and (ii) writing of non-reentrant code Checking that binary code satisfies these standards/conditions, however, is undecidable, in general We thus develop static analysis based methods for checking if a software binary satisfies these conditions This static analysis rests on the abstract interpretation framework We illustrate our approach by showing how we statically analyze the presence of hard coded pointer variables in assembly code obtained from binaries of digital signal processing applications The analyzer we have developed takes the binary to be checked for reuse as input, disassembles it, builds the flow graph, and statically analyzes the flow graph to check for the presence of code that will hinder its reuse.