中文
相关论文

相关论文: Control Flow Graph Recovery for Dynamically Loaded…

200 篇论文

Where full static analysis of systems fails to scale up due to system size, dynamic monitoring has been increasingly used to ensure system correctness. The downside is, however, runtime overheads which are induced by the additional…

计算机科学中的逻辑 · 计算机科学 2017-08-25 Shaun Azzopardi , Christian Colombo , Gordon J. Pace

This paper presents a software-based technique to recover control-flow errors in multithreaded programs. Control-flow error recovery is achieved through inserting additional instructions into multithreaded program at compile time regarding…

编程语言 · 计算机科学 2016-07-27 Navid Khoshavi , Mohammad Maghsoudloo , Hamid R. Zarandi

Predicting program behavior without execution is a critical task in software engineering. Existing models often fall short in capturing the dynamic dependencies among program elements. To address this, we present CodeFlow, a novel machine…

软件工程 · 计算机科学 2025-02-11 Cuong Chi Le , Hoang Nhat Phan , Huy Nhat Phan , Tien N. Nguyen , Nghi D. Q. Bui

As currently classical malware detection methods based on signatures fail to detect new malware, they are not always efficient with new obfuscation techniques. Besides, new malware is easily created and old malware can be recoded to produce…

密码学与安全 · 计算机科学 2016-09-13 Andree Linke , Nhien-An Le-Khac

Malware is a significant threat to the security of computer systems and networks which requires sophisticated techniques to analyze the behavior and functionality for detection. Traditional signature-based malware detection methods have…

密码学与安全 · 计算机科学 2023-06-22 Shaswata Mitra , Stephen A. Torri , Sudip Mittal

Code deobfuscation is the task of recovering a readable version of a program while preserving its original behavior. In practice, this often requires days or even months of manual work with complex and expensive analysis tools. In this…

软件工程 · 计算机科学 2026-04-28 Seyedreza Mohseni , Sarvesh Baskar , Edward Raff , Manas Gaur

We present a novel malware detection approach based on metrics over quantitative data flow graphs. Quantitative data flow graphs (QDFGs) model process behavior by interpreting issued system calls as aggregations of quantifiable data…

密码学与安全 · 计算机科学 2015-02-13 Tobias Wüchner , Martín Ochoa , Alexander Pretschner

We propose a deep learning approach for identifying malware families using the function call graphs of x86 assembly instructions. Though prior work on static call graph analysis exists, very little involves the application of modern,…

密码学与安全 · 计算机科学 2020-12-04 Thomas Dalton , Mauritius Schmidtler , Alireza Hadj Khodabakhshi

Malware analysis techniques are divided into static and dynamic analysis. Both techniques can be bypassed by circumvention techniques such as obfuscation. In a series of works, the authors have promoted the use of symbolic executions…

密码学与安全 · 计算机科学 2022-04-13 Charles-Henry Bertrand Van Ouytsel , Axel Legay

Speculative execution attacks undermine the security of constant-time programming, the standard technique used to prevent microarchitectural side channels in security-sensitive software such as cryptographic code. Constant-time code must…

密码学与安全 · 计算机科学 2023-12-18 Rutvik Choudhary , Alan Wang , Zirui Neil Zhao , Adam Morrison , Christopher W. Fletcher

Despite their ability to aid developers in detecting potential defects early in the software development life cycle, static analysis tools often suffer from precision issues (i.e., high false positive rates of reported alarms). To improve…

软件工程 · 计算机科学 2024-01-22 Yuwei Zhang , Ying Xing , Ge Li , Zhi Jin

This paper investigates a flow- and path-sensitive static information flow analysis. Compared with security type systems with fixed labels, it has been shown that flow-sensitive type systems accept more secure programs. We show that an…

编程语言 · 计算机科学 2017-06-22 Peixuan Li , Danfeng Zhang

Static analysis is the analysis of a program without executing it, usually carried out by an automated tool. Symbolic execution is a popular static analysis technique used both in program verification and in bug detection software. It works…

软件工程 · 计算机科学 2024-08-06 Gabor Horvath , Reka Kovacs , Zoltan Porkolab

We propose a symbolic execution method for analyzing the safety of software under fault attacks both accurately and efficiently. Fault attacks leverage physically injected hardware faults in an embedded system to break the safety of a…

软件工程 · 计算机科学 2026-04-27 Yuzhou Fang , Chenyu Zhou , Jingbo Wang , Chao Wang

Symbolic execution is a powerful program analysis technique that allows for the systematic exploration of all program paths. Path explosion, where the number of states to track becomes unwieldy, is one of the biggest challenges hindering…

密码学与安全 · 计算机科学 2025-08-12 Joshua Bailey , Charles Nicholas

Control-flow attacks, usually achieved by exploiting a buffer-overflow vulnerability, have been a serious threat to system security for over fifteen years. Researchers have answered the threat with various mitigation techniques, but…

密码学与安全 · 计算机科学 2015-04-10 Andreas Follner , Eric Bodden

In a functional language, the dominant control-flow mechanism is function call and return. Most higher-order flow analyses, including k-CFA, do not handle call and return well: they remember only a bounded number of pending calls because…

编程语言 · 计算机科学 2015-07-01 Dimitrios Vardoulakis , Olin Shivers

Dataflow diagrams (DFDs) are a valuable asset for securing applications, as they are the starting point for many security assessment techniques. Their creation, however, is often done manually, which is time-consuming and introduces…

软件工程 · 计算机科学 2023-04-26 Simon Schneider , Riccardo Scandariato

Motivated by the immutable nature of Ethereum smart contracts and of their transactions, quite many approaches have been proposed to detect defects and security problems before smart contracts become persistent in the blockchain and they…

软件工程 · 计算机科学 2021-03-17 Filippo Contro , Marco Crosara , Mariano Ceccato , Mila Dalla Preda

Software vulnerabilities are a challenge in cybersecurity. Manual security patches are often difficult and slow to be deployed, while new vulnerabilities are created. Binary code vulnerability detection is less studied and more complex…

密码学与安全 · 计算机科学 2024-04-15 Litao Li , Steven H. H. Ding , Andrew Walenstein , Philippe Charland , Benjamin C. M. Fung
‹ 上一页 1 2 3 10 下一页 ›