CLORIFI: software vulnerability discovery using code clone verification

Li, Hongzhe; Kwon, Hyuckmin; Kwon, Jonghoon; Lee, Heejo

doi:10.1002/cpe.3532

Cited by 29 publications

(13 citation statements)

References 28 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…CLORIFI [8] is the closest research to this paper. It proposes a method to detect code clone vulnerabilities by the combination of static and dynamic analysis.…”

Section: Related Workmentioning

confidence: 97%

Automated Source Code Instrumentation for Verifying Potential Vulnerabilities

Li¹,

Oh²,

Oh³

et al. 2016

ICT Systems Security and Privacy Protection

Self Cite

View full text Add to dashboard Cite

With a rapid yearly growth rate, software vulnerabilities are making great threats to the system safety. In theory, detecting and removing vulnerabilities before the code gets ever deployed can greatly ensure the quality of software released. However, due to the enormous amount of code being developed as well as the lack of human resource and expertise, severe vulnerabilities still remain concealed or cannot be revealed effectively. Current source code auditing tools for vulnerability discovery either generate too many false positives or require overwhelming manual efforts to report actual software flaws. In this paper, we propose an automatic verification mechanism to discover and verify vulnerabilities by using program source instrumentation and concolic testing. In the beginning, we leverage CIL to statically analyze the source code including extracting the program CFG, locating the security sinks and backward tracing the sensitive variables. Subsequently, we perform automated program instrumentation to insert security probes ready for the vulnerability verification. Finally, the instrumented program source is passed to the concolic testing engine to verify and report the existence of an actual vulnerability. We demonstrate the efficacy and efficiency of our mechanism by implementing a prototype system and perform experiments with nearly 4000 test cases from Juliet Test Suite. The results show that our system can verify over 90% of test cases and it reports buffer overflow flaws with P recision = 100%(0 FP) and Recall = 94.91%. In order to prove the practicability of our system working in real world programs, we also apply our system on 2 popular Linux utilities, Bash and Cpio. As a result, our system finds and verifies vulnerabilities in a fully automatic way with no false positives.

show abstract

“…CLORIFI [8] is the closest research to this paper. It proposes a method to detect code clone vulnerabilities by the combination of static and dynamic analysis.…”

Section: Related Workmentioning

confidence: 97%

Automated Source Code Instrumentation for Verifying Potential Vulnerabilities

Li¹,

Oh²,

Oh³

et al. 2016

ICT Systems Security and Privacy Protection

Self Cite

View full text Add to dashboard Cite

show abstract

“…Li developed a software vulnerability detection mechanism named CLORIFI . It combines the advantage of static and dynamic analysis to detect code clone vulnerability using code clone verification [32]. That reduces false positives, but CVE patch information is not enough to identify sensitive sinks.…”

Section: B Mature Toolsmentioning

confidence: 99%

An Optimized Static Propositional Function Model to Detect Software Vulnerability

et al. 2019

View full text Add to dashboard Cite

Due to the lack of appropriate theory to accurately characterize vulnerabilities, the current static detection technologies have two key challenges, i.e., limited applicability, and the problem of state space explosion. In this paper, we put forward a static detection model based on the proposition function. Furthermore, a new program intermediate representation called Vulnerability Executable Path Set (VEPS) is proposed to optimize our model which compresses the program state space distinctly. In addition, in order to confirm the reliability of the static detection model, we conduct three terms of contrast experiments to estimate the results with the vulnerability disclosed by NIST. The results obtained from extensive experiments show that the proposed model effectively detects more Wireshark bugs than NIST, and reveals a higher detection efficiency than FindBugs.

show abstract

“…They define a novel distance measurement that combines the semantic and Euclidean distance to address the privacy-preserving issue. They conduct performance experiments on the proposed algorithm and distance metric, and results suggest that they can successfully retain the utility of the location services.In [3], to discover software vulnerability, an effective and efficient mechanism is proposed. The method also helps programmers to write secure code to avoid the existence of vulnerability at the early stage of software development.…”

mentioning

confidence: 99%

“…In , to discover software vulnerability, an effective and efficient mechanism is proposed. The method also helps programmers to write secure code to avoid the existence of vulnerability at the early stage of software development.…”

mentioning

confidence: 99%

Securing cyberspace

Niu

Guo

et al. 2015

Concurrency and Computation

View full text Add to dashboard Cite

Cyberspace, the ubiquitous space that exists in relation to the Internet, is usually referred to as a dynamic broad domain ranging from Internet and its infrastructures to social networks. More research work in security has been extended from securing computers to securing Cyberspace, which includes the physical-level security, the network-level security, and the application-level security and addresses improvements in Cyberspace management.As a result, recent years have witnessed increasing research attention on securing Cyberspace, and many interesting methods have been proposed to locate suspicious IP, detect gossip content, prevent illegal information publication and distribution, manage social software and applications, and profile user behavior and opinion. This trend has provided the motivation to launch this special issue. The papers in this issue report a variety of methods used to tackle the security issues in cyberspace. They aim at improving security in applications ranging from RFID systems, location based service, discovery of software vulnerability to private medical records, and outsourcing in Multi-Cloud. The problems discussed in these papers are also related to disciplines including data mining, network security, digital forensics, and behavioral and psychological sciences.Here, we provide an integrative perspective of this special issue by summarizing each contribution contained therein.In [1], to address security and privacy issue in RFID systems, a new off-line reading orderindependent grouping-proof protocol is proposed to generate a proof that a group of tags have been scanned simultaneously in the range of a reader. The proposed protocol defines an ideal groupingproof functionality aiming at capturing the secure grouping-proof generation for a group of RFID tags in the UC framework. The new protocol maintains its security properties when composed concurrently with an unbounded number of instances of arbitrary protocol. In addition, the protocol conforms to the computational constraints of EPC Class-Gen-2 passive RFID tags. It is suitable for low-cost passive RFID tags, which are widely used in practical applications.In [2], the authors proposed an algorithm to address the problem of preserving privacy for individual users in location-aware applications. They define a novel distance measurement that combines the semantic and Euclidean distance to address the privacy-preserving issue. They conduct performance experiments on the proposed algorithm and distance metric, and results suggest that they can successfully retain the utility of the location services.In [3], to discover software vulnerability, an effective and efficient mechanism is proposed. The method also helps programmers to write secure code to avoid the existence of vulnerability at the early stage of software development. The proposed mechanism uses code clone verification to discover vulnerability in software programs and reduces the false positive of detection by combining the advantages of static and dynamic analysis. In ad...

show abstract

CLORIFI: software vulnerability discovery using code clone verification

Cited by 29 publications

References 28 publications

Automated Source Code Instrumentation for Verifying Potential Vulnerabilities

Automated Source Code Instrumentation for Verifying Potential Vulnerabilities

An Optimized Static Propositional Function Model to Detect Software Vulnerability

Securing cyberspace

Contact Info

Product

Resources

About