DSpace Repository

Accurate Recovery of Functions in COTS Binaries

Show simple item record

dc.contributor.advisor Sekar, R. en_US
dc.contributor.author Qiao, Rui en_US
dc.contributor.other Department of Computer Science en_US
dc.date.accessioned 2017-09-20T16:52:17Z
dc.date.available 2017-09-20T16:52:17Z
dc.date.issued 2017-05-01 en_US
dc.identifier.uri http://hdl.handle.net/11401/77248 en_US
dc.description 110 pg. en_US
dc.description.abstract Binary analysis and instrumentation play a central role in COTS software security. They can be used to detect and prevent vulnerabilities, mitigate exploits, enforce security policies, and so on. Many security instrumentations work at the granularity of functions. However, unlike high-level languages, functions in binaries are not clearly demarcated. To complicate matters further, functions in binaries may have multiple entry points and/or exit points. Some of these entries or exits may not be determined simply by instruction syntax or code patterns. Moreover, many functions are reachable only through indirect control transfers, while some may be altogether unreachable. In this dissertation, we present an approach that overcomes these challenges to accurately identify function boundaries, as well as calls and returns. Our approach is based on fine-grained static analysis, relying on precise models of instruction set semantics derived in part from our previous work. In the later part of the work, we expand our investigation to recover the next crucial piece of information that is lost in high-level language to binary translation: the types and numbers of function parameters. We propose an approach that uses fine-grained binary analysis to address this problem. We evaluate this technique by applying it to enforce fine-grained control-flow integrity policies. While our approach is widely applicable to all binaries, when combined with recovered C++ semantics, it provides significantly improved protection. en_US
dc.description.sponsorship This work is sponsored by the Stony Brook University Graduate School in compliance with the requirements for completion of degree. en_US
dc.format Monograph en_US
dc.format.medium Electronic Resource en_US
dc.language.iso en_US en_US
dc.publisher The Graduate School, Stony Brook University: Stony Brook, NY. en_US
dc.subject.lcsh Computer science en_US
dc.title Accurate Recovery of Functions in COTS Binaries en_US
dc.type Dissertation en_US
dc.mimetype Application/PDF en_US
dc.contributor.committeemember Polychronakis, Michalis en_US
dc.contributor.committeemember Nikiforakis, Nick en_US
dc.contributor.committeemember Prakash, Aravind. en_US

Files in this item

This item appears in the following Collection(s)

Show simple item record

Search DSpace

Advanced Search


My Account