Finding and Demonstrating Undesired Program Behavior

查找并演示不需要的程序行为

基本信息

  • 批准号:
    275488084
  • 负责人:
    Professor Dr. Eric Bodden
  • 金额:
    --
  • 依托单位:
    Fachgruppe Softwaretechnik
  • 依托单位国家:
    德国
  • 项目类别:
    Research Grants
  • 财政年份:
    2015
  • 资助国家:
    德国
  • 起止时间:
    2014-12-31 至 2020-12-31
  • 项目状态:
    已结题

项目摘要

Predicting what software will do and will not do has always been hard. Testing can produce false negatives, and miss issues: They can only cover a fraction of the possible executions, and therefore can give no guarantees about future executions. On the other hand, the precision of static code analysis diminishes as programs grow, leading to false positives, or false alarms.The problem becomes significant when analyzing potentially malicious software, as these can actively thwart their analysis: At runtime, for instance, a program may detect that it is analyzed dynamically, and turn off malicious behavior as a consequence. Static analysis, on the other hand, can be made impossible by loading and decrypting code at runtime. In the presence of targeted obfuscation techniques, both static and dynamic analysis become effectively powerless.The TESTIFY project aims at restoring precision and effectiveness as it comes to predicting software behavior. The key idea is to combine the respective strengths of static analysis, automatic test generation and dynamic analysis:1. DEMONSTRATE POTENTIAL ISSUES THROUGH TEST GENERATION. We use static analysis to detect potential issues in software (say, an undesired information flow). We let such potential issues guide _automatic test generation_ to produce witness executions; these prove that a potential issue may indeed manifest itself in a real execution. In other words, we automatically generate exploits for potential issues.2. STRENGTHEN STATIC ANALYSIS WITH DYNAMIC INFORMATION. Automatic test generation systematically aims at maximum coverage of program behavior. As a side effect, this means that all program code be loaded and decrypted. As execution progresses, we can thus analyze the new program code statically, predict what the code is up to, and again guide test generation towards potential issues.TESTIFY specifically targets the Android platform, known for its abundance of malicious programs. With TESTIFY, security analysts, developers, app store curators, and end users can all assess apps for undesired behavior. TESTIFY demonstrates each issue by a real input, and consequently, produces exact information on how the issue manifests itself: "If the server malwarecontrol.io sends a 'RECORD' message, the app will silently start recording all audio."
预测软件会做什么,不会做什么一直都很难。测试可能会产生假阴性,并遗漏问题:它们只能涵盖可能执行的一小部分,因此无法保证未来的执行。另一方面,静态代码分析的精度随着程序的增长而降低,从而导致误报或误报警。在分析潜在的恶意软件时,这个问题变得很严重,因为这些软件可能会主动阻碍他们的分析:例如,在运行时,程序可能会检测到它是动态分析的,并因此关闭恶意行为。另一方面,通过在运行时加载和解密代码可以使静态分析变得不可能。在目标模糊技术的存在下,静态和动态分析都变得无能为力。验证项目旨在恢复预测软件行为的精度和有效性。其核心思想是结合静态分析、自动测试生成和动态分析各自的长处:1.通过测试生成展示潜在的问题。我们使用静态分析来检测软件中的潜在问题(例如,不需要的信息流)。我们让这样的潜在问题引导自动测试生成来见证执行;这些证明潜在问题确实可能在真实的执行中表现出来。换句话说,我们会自动生成针对潜在问题的漏洞。用动态信息加强静态分析。自动测试生成的系统目标是最大限度地覆盖程序行为。作为一个副作用,这意味着所有程序代码都要加载和解密。随着执行的进行,我们可以静态地分析新的程序代码,预测代码的用途,并再次指导测试生成潜在的问题。TESTIFY专门针对Android平台,该平台以其丰富的恶意程序而闻名。有了证言,安全分析师、开发人员、应用商店管理员和最终用户都可以评估应用程序的不良行为。Nexify通过真实的输入来演示每个问题,从而产生关于问题如何表现的准确信息:“如果服务器恶意控制.io发送了一条‘Record’消息,应用程序将开始静默地记录所有音频。”

项目成果

期刊论文数量(4)
专著数量(0)
科研奖励数量(0)
会议论文数量(0)
专利数量(0)
AccessiLeaks: Investigating Privacy Leaks Exposed by the Android Accessibility Service
  • DOI:
    10.2478/popets-2019-0031
  • 发表时间:
    2019-04
  • 期刊:
    Proceedings on Privacy Enhancing Technologies
  • 影响因子:
    0
  • 作者:
    Mohammad Naseri;N. P. Borges;A. Zeller;Romain Rouvoy
  • 通讯作者:
    Mohammad Naseri;N. P. Borges;A. Zeller;Romain Rouvoy
Testing Apps With Real-World Inputs
Learning user interface element interactions
{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
    {{ item.journal_name }}
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

数据更新时间:{{ journalArticles.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ monograph.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ sciAawards.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ conferencePapers.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ patent.updateTime }}

Professor Dr. Eric Bodden其他文献

Professor Dr. Eric Bodden的其他文献

{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
    {{ item.journal_name }}
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}
立即体验

{{ truncateString('Professor Dr. Eric Bodden', 18)}}的其他基金

Future-proofing the Soot Framework for Program Analysis and Transformation (FutureSoot)
面向未来的程序分析和转换 Soot 框架 (FutureSoot)
  • 批准号:
    391001466
  • 财政年份:
    2018
  • 资助金额:
    --
  • 项目类别:
    Research data and software (Scientific Library Services and Information Systems)
Beweisbar sichere Programmausführung durch deklarativ definierte dynamische Programmanalysen (Kennwort: RUNSECURE)
通过声明性定义的动态程序分析可证明程序执行的安全性(密码:RUNSECURE)
  • 批准号:
    216294198
  • 财政年份:
    2012
  • 资助金额:
    --
  • 项目类别:
    Independent Junior Research Groups

相似海外基金

Recycling of platinum electrodes demonstrating particulate electrochemical printing - PEP 3d Pt
铂电极的回收展示了颗粒电化学印刷 - PEP 3d Pt
  • 批准号:
    2905755
  • 财政年份:
    2024
  • 资助金额:
    --
  • 项目类别:
    Studentship
Net Zero Ports of the Future: Demonstrating the Integration of Green Hydrogen Shore Power with Water Reuse
未来的净零港口:展示绿色氢岸电与水回用的集成
  • 批准号:
    10098442
  • 财政年份:
    2024
  • 资助金额:
    --
  • 项目类别:
    Collaborative R&D
Demonstrating the potential for portable detection of bird flu.
展示便携式检测禽流感的潜力。
  • 批准号:
    10090901
  • 财政年份:
    2024
  • 资助金额:
    --
  • 项目类别:
    Collaborative R&D
Demonstrating ocean acidification-driven changes in the ecological role of benthic macroherbivores in controlling algal habitats
展示海洋酸化驱动的底栖大型食草动物在控制藻类栖息地中的生态作用的变化
  • 批准号:
    23K26924
  • 财政年份:
    2024
  • 资助金额:
    --
  • 项目类别:
    Grant-in-Aid for Scientific Research (B)
Project Zephattan: Demonstrating three wind-generator technologies to power e-mobility charging in West Africa and the Pacific
Zephattan 项目:展示三种风力发电机技术,为西非和太平洋地区的电动汽车充电提供动力
  • 批准号:
    10107747
  • 财政年份:
    2024
  • 资助金额:
    --
  • 项目类别:
    Demonstrator
Low Carbon Acoustic Barriers - Demonstrating Innovation in Railway Construction
低碳声屏障——展示铁路建设创新
  • 批准号:
    10062090
  • 财政年份:
    2023
  • 资助金额:
    --
  • 项目类别:
    Collaborative R&D
Demonstrating ocean acidification-driven changes in the ecological role of benthic macroherbivores in controlling algal habitats
展示海洋酸化驱动的底栖大型食草动物在控制藻类栖息地中的生态作用的变化
  • 批准号:
    23H02231
  • 财政年份:
    2023
  • 资助金额:
    --
  • 项目类别:
    Grant-in-Aid for Scientific Research (B)
Open Clasp, Open Archive: Preserving the company's legacy, demonstrating its impact and value, and opening access to its unique archive of feminist th
Open Clasp、Open Archive:保护公司的遗产,展示其影响力和价值,并开放对其独特的女权主义档案的访问
  • 批准号:
    2870460
  • 财政年份:
    2023
  • 资助金额:
    --
  • 项目类别:
    Studentship
Feasibility of delivering and demonstrating a human-in-the-loop digital twin in the construction and maintenance of GCRE (Athena)
在 GCRE (Athena) 的建设和维护中交付和演示人机交互数字孪生的可行性
  • 批准号:
    10063263
  • 财政年份:
    2023
  • 资助金额:
    --
  • 项目类别:
    Collaborative R&D
Demonstrating the feasibility of applying machine learning models to railway condition data: Engine condition monitoring and failure prediction
展示将机器学习模型应用于铁路状况数据的可行性:发动机状况监测和故障预测
  • 批准号:
    10080979
  • 财政年份:
    2023
  • 资助金额:
    --
  • 项目类别:
    Collaborative R&D
{{ showInfoDetail.title }}

作者:{{ showInfoDetail.author }}

知道了