Toward automated detection of logic vulnerabilities in web applications
作者: Christopher Kruegel , Viktoria Felmetsger , Ludovico Cavedon , Giovanni Vigna
DOI:
关键词:
摘要: Web applications are the most common way to make services and data available on Internet. Unfortunately, with increase in number complexity of these applications, there has also been an vulnerabilities. Current techniques identify security problems web have mostly focused input validation flaws, such as crosssite scripting SQL injection, much less attention devoted application logic vulnerabilities. Application vulnerabilities important class defects that result faulty logic. These specific functionality particular and, thus, they extremely difficult characterize identify. In this paper, we propose a first step toward automated detection To end, use dynamic analysis observe normal operation infer simple set behavioral specifications. Then, leveraging knowledge about typical execution paradigm filter learned specifications reduce false positives, model checking over symbolic program paths likely violate under conditions, indicating presence certain type flaws. We developed tool, called Waler, based our ideas, applied it finding previously-unknown
ucsb.edu
acm.org 参考文章(26)
Amit Klein, Cross Site Scripting Explained ,(2002)
Chris Anley, Advanced SQL Injection In SQL Server Applications ,(2002)
Alex Aiken, Yichen Xie, Static detection of security vulnerabilities in scripting languages usenix security symposium. pp. 13- ,(2006)
Michael Martin, Monica S. Lam, Automatic generation of XSS and SQL injection attacks with goal-directed model checking usenix security symposium. pp. 31- 43 ,(2008)
Jeremy W. Nimmer, Michael D. Ernst, Static verification of dynamically detected program invariants: Integrating Daikon and ESC/Java Electronic Notes in Theoretical Computer Science. ,vol. 55, pp. 255- 276 ,(2001) , 10.1016/S1571-0661(04)00256-7
Roberto Paleari, Davide Marrone, Danilo Bruschi, Mattia Monga, On Race Vulnerabilities in Web Applications international conference on detection of intrusions and malware and vulnerability assessment. pp. 126- 142 ,(2008) , 10.1007/978-3-540-70542-0_7
V. Benjamin Livshits, Monica S. Lam, Finding security vulnerabilities in java applications with static analysis usenix security symposium. pp. 18- 18 ,(2005)
Anh Nguyen-Tuong, Salvatore Guarnieri, Doug Greene, Jeff Shirley, David Evans, Automatically Hardening Web Applications Using Precise Tainting information security conference. pp. 295- 307 ,(2004) , 10.1007/0-387-25660-1_20
Marco Cova, Davide Balzarotti, Viktoria Felmetsger, Giovanni Vigna, Swaddler: an approach for the anomaly-based detection of state violations in web applications recent advances in intrusion detection. pp. 63- 86 ,(2007) , 10.1007/978-3-540-74320-0_4
Tadeusz Pietraszek, Chris Vanden Berghe, Defending Against Injection Attacks Through Context-Sensitive String Evaluation Lecture Notes in Computer Science. pp. 124- 145 ,(2006) , 10.1007/11663812_7