TaintTrace: Efficient Flow Tracing with Dynamic Binary Rewriting

Cheng, Winnie; Zhao, Qin; Yu, Bei; Hiroshige, S.

doi:10.1109/iscc.2006.158

Cited by 118 publications

(114 citation statements)

References 3 publications

Supporting

Mentioning

111

Contrasting

Order By: Relevance

“…Haldar et al [16] propose a taint based approach for programs in Java, and Lam et al [19] propose a dynamic taint based analysis on C. Enck et al [11] provide a taint based approach to track third party Android applications. Cheng et al [6], Clause et al [7] and Zhu et al [31] propose software level dynamic tainting.…”

Section: Related Workmentioning

confidence: 99%

Preventing Unauthorized Data Flows

Uzun

Parlato

Atluri

et al. 2017

Data and Applications Security and Privacy XXXI

View full text Add to dashboard Cite

Abstract. Trojan Horse attacks can lead to unauthorized data flows and can cause either a confidentiality violation or an integrity violation. Existing solutions to address this problem employ analysis techniques that keep track of all subject accesses to objects, and hence can be expensive. In this paper we show that for an unauthorized flow to exist in an access control matrix, a flow of length one must exist. Thus, to eliminate unauthorized flows, it is sufficient to remove all one-step flows, thereby avoiding the need for expensive transitive closure computations. This new insight allows us to develop an efficient methodology to identify and prevent all unauthorized flows leading to confidentiality and integrity violations. We develop separate solutions for two different environments that occur in real life, and experimentally validate the efficiency and restrictiveness of the proposed approaches using real data sets.

show abstract

Section: Related Workmentioning

confidence: 99%

Preventing Unauthorized Data Flows

Uzun

Parlato

Atluri

et al. 2017

Data and Applications Security and Privacy XXXI

View full text Add to dashboard Cite

show abstract

“…TaintTrace [5] is more efficient than TaintCheck. It is based on DynamoRIO [10] and consists of a number of optimizations to keep the overhead low.…”

Section: Related Workmentioning

confidence: 99%

Detecting Control Flow in Smarphones: Combining Static and Dynamic Analyses

Graa

Cuppens-Boulahia

Cuppens

et al. 2012

Cyberspace Safety and Security

View full text Add to dashboard Cite

Abstract. Security in embedded systems such as smartphones requires protection of confidential data and applications. Many of security mechanisms use dynamic taint analysis techniques for tracking information flow in software. But these techniques cannot detect control flows that use conditionals to implicitly transfer information from objects to other objects. In particular, malicious applications can bypass Android system and get privacy sensitive information through control flows. We propose an enhancement of dynamic taint analysis that propagates taint along control dependencies by using the static analysis in embedded system such as Google Android operating system. By using this new approach, it becomes possible to protect sensitive information and detect most types of software exploits without reporting too many false positives.

show abstract

“…One of its first practical instantiations was employed in detecting and defending against software attacks [19], while it has found many more applications since then. Currently, dynamic tracking approaches range from per-process taint tracking [6,8,14,19,21,25,29], to wholesystem tracking [9,10,20,27] using emulation environments and hardware extensions.…”

Section: Dynamic Taint Trackingmentioning

confidence: 99%

Taint-Exchange: A Generic System for Cross-Process and Cross-Host Taint Tracking

Zavou

Portokalidis

Keromytis

2011

Advances in Information and Computer Security

View full text Add to dashboard Cite

Abstract. Dynamic taint analysis (DTA) has been heavily used by security researchers for various tasks, including detecting unknown exploits, analyzing malware, preventing information leaks, and many more. Recently, it has been also utilized to track data across processes and hosts to shed light on the interaction of distributed components, but also for security purposes. This paper presents Taint-Exchange, a generic crossprocess and cross-host taint tracking framework. Our goal is to provide researchers with a valuable tool for rapidly developing prototypes that utilize cross-host taint tracking. Taint-Exchange builds on the libdft open source data flow tracking framework for processes, so unlike previous work it does not require extensive maintenance and setup. It intercepts I/O related system calls to transparently multiplex fine-grained taint information into existing communication channels, like sockets and pipes. We evaluate Taint-Exchange using the popular lmbench suite, and show that it incurs only moderate overhead.

show abstract

TaintTrace: Efficient Flow Tracing with Dynamic Binary Rewriting

Abstract: Abstract

Cited by 118 publications

References 3 publications

Preventing Unauthorized Data Flows

Preventing Unauthorized Data Flows

Detecting Control Flow in Smarphones: Combining Static and Dynamic Analyses

Taint-Exchange: A Generic System for Cross-Process and Cross-Host Taint Tracking

Contact Info

Product

Resources

About