Integrating Static and Dynamic Analysis for Detecting Vulnerabilities

Authors:
Ashish Aggarwal;Pankaj Jalote
Affiliations:
Indian Institute of Technology, India;Indian Institute of Technology, India
Venue:
COMPSAC '06 Proceedings of the 30th Annual International Computer Software and Applications Conference - Volume 01
Year:
2006

Citing 0
Cited 8

A Hybrid Approach for Safe Memory Management in C

AMAST 2008 Proceedings of the 12th international conference on Algebraic Methodology and Software Technology
Interprocedural and Flow-Sensitive Type Analysis for Memory and Type Safety of C Code

Journal of Automated Reasoning
A systematic literature review of actionable alert identification techniques for automated static code analysis

Information and Software Technology
Optimizing cost and quality by integrating inspection and test processes

Proceedings of the 2011 International Conference on Software and Systems Process
A systematic mapping study on the combination of static and dynamic quality assurance techniques

Information and Software Technology
Static program analysis assisted dynamic taint tracking for software vulnerability discovery

Computers & Mathematics with Applications
Mitigating program security vulnerabilities: Approaches and challenges

ACM Computing Surveys (CSUR)
A comparative evaluation of static analysis actionable alert identification techniques

Proceedings of the 9th International Conference on Predictive Models in Software Engineering

Quantified Score

Hi-index	0.00

Visualization

Abstract

A secure software demands effective techniques for vulnerability detection during its development cycle. The practice of detecting security flaws before the deployment phase eliminates the risks that vulnerabilities may impose for the company. Static analysis and dynamic analysis techniques offer two complimentary approaches for checking vulnerabilities. Static analysis involves the scanning of source code or binary eliminating the need of executing it. This approach is fast and has no run time overhead. However, static analysis are quite imprecise and generate huge false positives and false negatives. On the other hand, dynamic analysis involves the running of the software. The problem of false positives and negatives is less in case of dynamic analysis because they analyze by running the test cases. But this approach requires large number of test cases to ensure a certain confidence level in detecting security bugs. This paper describes a methodology which integrates the two approaches in a complimentary manner. It adopts the strengths of the two and eliminates their weaknesses. We are currently dealing with buffer overflow vulnerability with pointer aliasing. However the idea can be extended to other vulnerabilities also for e.g memory related errors, race conditions( Time of Check to Time to Use vulnerability), dangling pointer vulnerability, integer errors etc.