Eliminating Human Specification in Static Analysis
暂无分享,去创建一个
We present a totally automatic static analysis approach for detecting code injection vulnerabilities in web applications on top of JSP/servlet framework. Our approach incorporates origin and destination information of data passing in information flows, and developer's beliefs on vulnerable information flows extracted via statistical analysis and pattern recognition technique, to infer specifications for flaws without any human participation. According to experiment, our algorithm is proved to be able to cover the most comprehensive range of attack vectors and lessen the manual labor greatly.
[1] Benjamin Livshits,et al. Finding Security Vulnerabilities in Java Applications with Static Analysis , 2005, USENIX Security Symposium.
[2] Manu Sridharan,et al. Thin slicing , 2007, PLDI '07.
[3] Manu Sridharan,et al. TAJ: effective taint analysis of web applications , 2009, PLDI '09.