Combining static and dynamic analyses for vulnerability detection: Illustration on heartbleed

Abstract : Security of modern information and communication systems has become a major concern. This tool paper presents Flinder-SCA, an original combined tool for vulnerability detection, implemented on top of Frama-C, a platform for collaborative verification of C programs, and Search Lab’s Flinder testing tool. Flinder-SCA includes three steps. First, abstract interpretation and taint analysis are used to detect potential vulnerabilities (alarms), then program slicing is applied to reduce the initial program, and finally a testing step tries to confirm detected alarms by fuzzing on the reduced program. We describe the proposed approach and the tool, illustrate its application for the recent OpenSSL/HeartBeat Heartbleed vulnerability, and discuss the benefits and industrial application perspectives of the proposed verification approach.
Document type :
Conference papers
Complete list of metadatas

https://hal-cea.archives-ouvertes.fr/cea-01834981
Contributor : Léna Le Roy <>
Submitted on : Wednesday, July 11, 2018 - 10:02:27 AM
Last modification on : Wednesday, January 23, 2019 - 2:39:33 PM

Identifiers

Collections

Citation

B. Kiss, N. Kosmatov, D. Pariente, A. Puccetti. Combining static and dynamic analyses for vulnerability detection: Illustration on heartbleed. Hardware and Software: Verification and Testing. HVC 2015. Lecture Notes in Computer Science, Nov 2015, Haifa, Israel. pp.39-50, ⟨10.1007/978-3-319-26287-1_3⟩. ⟨cea-01834981⟩

Share

Metrics

Record views

69