Research and Application of Grey Box Detection Technology Based on Reverse engineering and Dynamic Pollution Diffusion

Research and Application of Grey Box Detection Technology Based on Reverse engineering and Dynamic Pollution Diffusion

연구 분야: Analysis

학회: 2023 IEEE 7th Information Technology and Mechatronics Engineering Conference (ITOEC)

In order to reduce the security risks of application systems, reduce potential security vulnerabilities in software code writing, and improve the security protection capabilities of the application system itself, we increasingly rely on using source code security scanning tools to help software development teams quickly identify, locate, repair, and manage software code security issues. The main value of applying static source code security scanning lies in fast and accurate search, Identify and fix security risks in the code. However, software manufacturers are unwilling to provide source code, and sometimes the software is in the form of a connection library or written in assembly code. In this case, static analysis techniques for vulnerability mining that require source code cannot be applied. Therefore, this paper proposes a gray box detection technology based on the combination of Reverse engineering and dynamic pollution diffusion, which can obtain similar code and better understand the vulnerability and provide solutions through relocated code. The reverse code relocation of pollution diffusion can generate audit results that can be more intuitively presented to users, enabling them to have a clearer understanding of the principles behind vulnerabilities and take corresponding measures to prevent them, thus achieving the goal of gray box mining for source code vulnerabilities.