CPL - Chalmers Publication Library
| Utbildning | Forskning | Styrkeområden | Om Chalmers | In English In English Ej inloggad.

Let’s face it: Faceted values for taint tracking

Daniel Schoepe (Institutionen för data- och informationsteknik, Programvaruteknik (Chalmers)) ; Musard Balliu (Institutionen för data- och informationsteknik, Programvaruteknik (Chalmers)) ; F. Piessens ; Andrei Sabelfeld (Institutionen för data- och informationsteknik, Programvaruteknik (Chalmers))
Lecture Notes in Computer Science. 21st European Symposium on Research in Computer Security, ESORICS 2016, Heraklion, Greece, 26-30 September 2016 (0302-9743). Vol. 9878 LNCS, 2016 (2016), p. 561-580.
[Konferensbidrag, refereegranskat]

Taint tracking has been successfully deployed in a range of security applications to track data dependencies in hardware and machine-, binary-, and high-level code. Precision of taint tracking is key for its success in practice: being a vulnerability analysis, false positives must be low for the analysis to be practical. This paper presents an approach to taint tracking, which does not involve tracking taints throughout computation. Instead, we include shadow memories in the execution context, so that a single run of a program has the effect of computing on both tainted and untainted data. This mechanism is inspired by the technique of secure multi-execution, while in contrast to the latter it does not require running the entire program multiple times. We present a general framework and establish its soundness with respect to explicit secrecy, a policy for preventing insecure data leaks, and its precision showing that runs of secure programs are never modified. We show that the technique can be used for attack detection with no false positives. To evaluate the mechanism in practice, we implement DroidFace, a source-to-source transform for an intermediate Java-like language and benchmark its precision and performance with respect to representative static and dynamic taint trackers for Android. The results indicate that the performance penalty is tolerable while achieving both soundness and no false positives on the tested benchmarks.



Den här publikationen ingår i följande styrkeområden:

Läs mer om Chalmers styrkeområden  

Denna post skapades 2016-11-02. Senast ändrad 2017-01-16.
CPL Pubid: 244661

 

Läs direkt!


Länk till annan sajt (kan kräva inloggning)