Static Vulnerability Detection Technology for the Embedded Firmware Web Code Based on D-S Evidence Theory

doi:10.13190/j.jbupt.2018-212

JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM ›› 2019, Vol. 42 ›› Issue (5): 91-99.doi: 10.13190/j.jbupt.2018-212

Previous Articles Next Articles

Static Vulnerability Detection Technology for the Embedded Firmware Web Code Based on D-S Evidence Theory

WANG Si-qi^1,2, MIAO Si-wei³, ZHANG Xiao-ling^1,2, SHI Zhi-qiang^1,2, LU Xin-dai⁴

1. Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China;
2. School of Cyber Security, University of Chinese Academy of Sciences, Beijing 100049, China;
3. China Electric Power Research Institute, Beijing 100192, China;
4. State Grid Zhejiang Electric Power Research Institute, Hangzhou 310014, China

Received:2018-11-10 Online:2019-10-28 Published:2019-10-28

Abstract

Abstract: Currently, vulnerabilities mining and detection for firmware mainly include dynamic analysis which based on virtual simulation and static auditing which based on reverse engineering. These techniques may have low simulation rate and high false positive rate. Proposing a method based on multi-dimensional features for detection of firmware web vulnerabilities. This method can detect common Web vulnerabilities in firmware effectively and lower the false positive rate by using multi-dimensional features, multi-level preprocessing and vulnerabilities reasoning models based on D-S evidence theory.

Key words: firmware web, static analysis, vulnerability detection, multi-dimensional feature, D-S evidence theory

CLC Number:

TP309.1

WANG Si-qi, MIAO Si-wei, ZHANG Xiao-ling, SHI Zhi-qiang, LU Xin-dai. Static Vulnerability Detection Technology for the Embedded Firmware Web Code Based on D-S Evidence Theory[J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2019, 42(5): 91-99.

References

[1] Standard I. IEEE standard glossary of software engineering terminology[J]. IEEE Std, 1990, 610(12):1-84.
[2] Costin A, Zarras A, Francillon A, et al. Automated dynamic firmware analysis at scale:a case study on embedded web interfaces[C]//ACM on Asia Conference on Computer and Communications Security.[S.l.]:ACM, 2016:437-448.
[3] Exploit-db. TP-Link IP cameras firmware 1. 6. 18P12-multiple vulnerabilities[EB/OL]. (2013-05-28)[2018-09-01]. https://www.exploit-db.com/exploits/25812/.
[4] Costin A, Zaddach J, Francillon A, et al. A large-scale analysis of the security of embedded firmwares[C]//USENIX Security.[S.l.]:[s.n.], 2014:95-110.
[5] Miller B P, Fredriksen L, So B. An empirical study of the reliability of UNIX utilities[J]. Communications of the ACM, 1990, 33(12):32-44.
[6] Aitel D. An introduction to SPIKE, the fuzzer creation kit, presented at the BlackHat USA conference[EB/OL]. (2011-05-20)[2018-06-10]. https://www.blackhat.com/html/bh-usa-02/bh-usa-02-speakers.html.
[7] GitHub. Sulley:a pure-python fully automated and unattended fuzzing framework[EB/OL]. (2016-10-18)[2018-09-01]. https://github.com/OpenRCE/sulley.
[8] GitHub. A fuzzing framework which uses a DSL for building fuzzers and an observer based architecture to execute and monitor them[EB/OL]. (2017-08-08)[2018-09-01]. https://github.com/MozillaSecurity/peach.
[9] Chess B, West J. Dynamic taint propagation:finding vulnerabilities without attacking[J]. Information Security Technical Report, 2008, 13(1):33-39.
[10] Pistoia M, Chandra S, Fink S J, et al. A survey of static analysis methods for identifying security vulnerabilities in software systems[J]. IBM Systems Journal, 2007, 46(2):265-288.
[11] Li P, Cui B. A comparative study on software vulnerability static analysis techniques and tools[C]//Information Theory and Information Security (ICITIS).[S.l.]:IEEE, 2010:521-524.
[12] Liu B, Shi L, Cai Z, et al. Software vulnerability discovery techniques:a survey[C]//Multimedia Information Networking and Security (MINES).[S.l.]:IEEE, 2012:152-156.
[13] Agosta G, Barenghi A, Parata A, et al. Automated security analysis of dynamic web applications through symbolic code execution[C]//Information Technology:New Generations (ITNG).[S.l.]:IEEE, 2012:189-194.
[14] Zheng Y, Zhang X. Path sensitive static analysis of web applications for remote code execution vulnerability detection[C]//International Conference on Software Engineering.[S.l.]:[s.n.], 2013:652-661.
[15] Gupta M K, Govil M C, Singh G. Static analysis approaches to detect SQL injection and cross site scripting vulnerabilities in web applications:a survey[C]//Recent Advances and Innovations in Engineering.[S.l.]:IEEE, 2014:1-5.

Static Vulnerability Detection Technology for the Embedded Firmware Web Code Based on D-S Evidence Theory

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 5

Recommended Articles

Metrics

Comments

[1]	LIU Jinming, ZHANG Biling, ZHANG Yuyan. Adaptive federated filtering algorithm based on multi-sensor redundant data cooperative tracking [J]. Journal of Beijing University of Posts and Telecommunications, 2023, 46(4): 21-26.
[2]	Jin Da-Hai. Applications of PostFunction Information in Software Static Testing [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2010, 33(6): 103-106.
[3]	Ya-wen WANG yunzhan gong qing xiao Yang Zhao-Hong. Variable Range Analysis Based on Interval Computation [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2009, 32(3): 36-41.
[4]	XU Guo-ai1, ZHANG Miao1, CHEN Ai-guo1, LI Zhong-xian2 . An Integer Overflow Detection Method Based on Integer Variable Unification [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2008, 31(6): 90-93.
[5]	YANG Zhao-hong1，2 ，GONG Yun-zhan1,2 ， XIAO Qing1，2 ，WANG Ya-wen1,2. A Defect Based Model Testing System [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2008, 31(5): 1-4.