摘要
軟體安全日漸成為重要的研究主題,起因於越來越多的軟體攻擊行為發生,這些狀況有一部份是源自於程式語言本身的缺陷,而另一方面也是程式設計師本身的粗心所導致。因此,我們將藉由軟體偵測技術以減少這些問題。在論文中探討目前被廣泛運用的的程式漏洞-緩衝區溢位(Buffer overflow),例如西元2003年八月造成重大損失的疾風(Blaster)病毒即利用此種漏洞進行破壞。為了防止此類型的漏洞,本論文使用KLEE的符號執行模組(symbolic execution model)並引入新的記憶體對映機制(memory map)來探測緩衝區溢位。相較於傳統的檢測工具,本論文所提出的工具可確實產生、可利用的測資來觸發漏洞的行為,進而證實漏洞的存在。這些測資事實上就是一組攻擊字串,有別於駭客手動方式產生,我們將提出自動產生的方法。
並列摘要
Software security is getting more important recently. There are more and more attacks than before. It is partially due to some design flaws of the programming language and the lack of secure programming practices by programmers. The most serious vulnerability this thesis concerns with is buffer overflow, present in many C/C++ programs, such as the Blaster worm. For preventing from such vulnerabilities, we use symbolic execution with a new memory model supported by KLEE to detect buffer overflow vulnerabilities. This thesis actually generates an exploitable input to trigger buffer overflow and verify the presence of the vulnerability. The input suites we generate are realistic attacks. Unlike the usual hacking methods with manual techniques to reason on the tainting paths, we propose methods to generate exploitable input automatically.
參考文獻
延伸閱讀
- Tsai, Y. T. (2017). 非侵入定量末稍微循環的反應功能及其電腦模擬 [master's thesis, I-SHOU University]. Airiti Library. https://www.airitilibrary.com/Article/Detail?DocID=U0074-2808201716122500
- Wang, Y. Y. (2007). 利用非相關成份分析執行統計製程監控 [master's thesis, Yuan Ze University]. Airiti Library. https://www.airitilibrary.com/Article/Detail?DocID=U0009-2407200702191500
- Ren, H. L. (2016). 應用於快速擬真事後重新對焦之一維視點合成演算法之分析與硬體架構設計 [master's thesis, National Tsing Hua University]. Airiti Library. https://www.airitilibrary.com/Article/Detail?DocID=U0016-0901201710391843
- 吳瓊治(2008)。The Construction and Execution of Ethics。品質月刊,44(1),13-15。https://doi.org/10.29999/QM.200801.0004
- 鄭曉如(2011)。A discussion of prosecutors appealing against the acquittal judgment〔碩士論文,國立臺北大學〕。華藝線上圖書館。https://www.airitilibrary.com/Article/Detail?DocID=U0023-3101201111291800