Detection of Security Vulnerabilities Induced by Integer Errors

Salim Kissi, Yassamine Seladji, Rabéa Ameur-Boulifa

2021

Abstract

Sometimes computing platforms, e.g. storage device, compilers, operating systems used to execute software programs make them misbehave, this type of issues could be exploited by attackers to access sensitive data and compromise the system. This paper presents an automatable approach for detecting such security vulnerabilities due to improper execution environment. Specifically, the advocated approach targets the detection of security vulnerabilities in the software caused by memory overflows such as integer overflow. Based on analysis of the source code and by using a knowledge base gathering common execution platform issues and known restrictions, the paper proposes a framework able to infer the required assertions, without manual code annotations and rewriting, for generating logical formulas that can be used to reveal potential code weaknesses.

Download


Paper Citation


in Harvard Style

Kissi S., Seladji Y. and Ameur-Boulifa R. (2021). Detection of Security Vulnerabilities Induced by Integer Errors. In Proceedings of the 16th International Conference on Software Technologies - Volume 1: ICSOFT, ISBN 978-989-758-523-4, pages 177-184. DOI: 10.5220/0010551301770184


in Bibtex Style

@conference{icsoft21,
author={Salim Kissi and Yassamine Seladji and Rabéa Ameur-Boulifa},
title={Detection of Security Vulnerabilities Induced by Integer Errors},
booktitle={Proceedings of the 16th International Conference on Software Technologies - Volume 1: ICSOFT,},
year={2021},
pages={177-184},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010551301770184},
isbn={978-989-758-523-4},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 16th International Conference on Software Technologies - Volume 1: ICSOFT,
TI - Detection of Security Vulnerabilities Induced by Integer Errors
SN - 978-989-758-523-4
AU - Kissi S.
AU - Seladji Y.
AU - Ameur-Boulifa R.
PY - 2021
SP - 177
EP - 184
DO - 10.5220/0010551301770184