Improving application security with data flow assertions

Yip, Alexander; Wang, Xi; Zeldovich, Nickolai; Kaashoek, M. Frans

doi:10.1145/1629575.1629604

Cited by 120 publications

(82 citation statements)

References 34 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Run-Time Approaches to Web Application Security. Resin [37] is a runtime system that enforces information flow policies attached to data objects; it has been successfully applied to web applications. Jeeves [36], a similar language for enforcing information flow policies, has also been applied to the web.…”

Section: Related Workmentioning

confidence: 99%

Finding security bugs in web applications using a catalog of access control patterns

Near

Jackson

2016

Proceedings of the 38th International Conference on Software Engineering

View full text Add to dashboard Cite

We propose a specification-free technique for finding missing security checks in web applications using a catalog of access control patterns in which each pattern models a common access control use case. Our implementation, Space, checks that every data exposure allowed by an application's code matches an allowed exposure from a security pattern in our catalog. The only user-provided input is a mapping from application types to the types of the catalog; the rest of the process is entirely automatic. In an evaluation on the 50 most watched Ruby on Rails applications on Github, Space reported 33 possible bugs-23 previously unknown security bugs, and 10 false positives.

show abstract

Section: Related Workmentioning

confidence: 99%

Finding security bugs in web applications using a catalog of access control patterns

Near

Jackson

2016

Proceedings of the 38th International Conference on Software Engineering

View full text Add to dashboard Cite

show abstract

“…The PUMP architecture neither bounds the number of metadata bits nor the number of policies simultaneously supported; its microarchitectural optimizations (opgroups, tag compression, tag translation, and miss handler acceleration-see §4) achieve performance comparable to dedicated, hardware metadata propagation solutions ( §5). We believe the software-defined metadata policy model and its acceleration will be applicable to a large range of policies beyond those illustrated here, including sound information-flow control [7,8,32,56,62], fine-grained access control [67,71], integrity, synchronization [6,61], race detection [58,73], debugging, application-specific policies [70], and controlled generation and execution of dynamic code.…”

Section: Discussionmentioning

confidence: 99%

Architectural Support for Software-Defined Metadata Processing

Dhawan

Hriţcu

Rubin

et al. 2015

Proceedings of the Twentieth International Conference on Architectural Support for Programming Languages and Operating Systems

View full text Add to dashboard Cite

Optimized hardware for propagating and checking softwareprogrammable metadata tags can achieve low runtime overhead. We generalize prior work on hardware tagging by considering a generic architecture that supports softwaredefined policies over metadata of arbitrary size and complexity; we introduce several novel microarchitectural optimizations that keep the overhead of this rich processing low. Our model thus achieves the efficiency of previous hardwarebased approaches with the flexibility of the software-based ones. We demonstrate this by using it to enforce four diverse safety and security policies-spatial and temporal memory safety, taint tracking, control-flow integrity, and code and data separation-plus a composite policy that enforces all of them simultaneously. Experiments on SPEC CPU2006 benchmarks with a PUMP-enhanced RISC processor show modest impact on runtime (typically under 10%) and power ceiling (less than 10%), in return for some increase in energy usage (typically under 60%) and area for on-chip memory structures (110%).

show abstract

“…(3)In order to collect user information and analyze user behavior in some electronics markets, they will implement third party plug-ins to their own market in popular software in which may reveal user privacy information. (4)There is a lack of standardized management in the domestic Android electronics market and no system or mechanism to deal with software leakage [32].…”

Section: (3)location Informationmentioning

confidence: 99%

Investigation of taint analysis for Smartphone-implicit taint detection and privacy leakage detection

Hou

Jin

Wang

2016

J Wireless Com Network

View full text Add to dashboard Cite

Today's Smartphone operating systems frequently fail to provide users with adequate control and visibility into how the third-party applications use their private data. With TaintDroid realized on Android system, we can detect user's implicit taint and privacy leakage. But TaintDroid has some inherent defects. To better detect user's implicit taint and privacy leakage in the Android platform, this paper analyzes implicit taint detection and then proposes an automated detection system based on dynamic taint tracking, called TaintChaser. Monitoring sensitive data with TaintChaser provides informed use of third-party applications for phone users and valuable input for smart-phone security service firms seeking to identify misbehaving applications. TaintChaser can detect behaviors of user's data leakage in Android applications at a fine granularity level and the system can also analyze and test massive Android software in an automatic way. It uses TaintChaser to automatically analyze 38,268 popular Android applications and finds that 34.41 % of them may leak user's privacy.

show abstract

Improving application security with data flow assertions

Cited by 120 publications

References 34 publications

Finding security bugs in web applications using a catalog of access control patterns

Finding security bugs in web applications using a catalog of access control patterns

Architectural Support for Software-Defined Metadata Processing

Investigation of taint analysis for Smartphone-implicit taint detection and privacy leakage detection

Contact Info

Product

Resources

About