Automatic vulnerability detection in embedded devices and firmware: Survey and layered taxonomies
In the era of the internet of things (IoT), software-enabled inter-connected devices are of
paramount importance. The embedded systems are very frequently used in both security …
paramount importance. The embedded systems are very frequently used in both security …
[PDF][PDF] Discovre: Efficient cross-architecture identification of bugs in binary code.
S Eschweiler, K Yakdan, E Gerhards-Padilla - Ndss, 2016 - ndss-symposium.org
The identification of security-critical vulnerabilities is a key for protecting computer systems.
Being able to perform this process at the binary level is very important given that many …
Being able to perform this process at the binary level is very important given that many …
Cross-architecture bug search in binary executables
J Pewny, B Garmany, R Gawlik… - … IEEE Symposium on …, 2015 - ieeexplore.ieee.org
With the general availability of closed-source software for various CPU architectures, there is
a need to identify security-critical vulnerabilities at the binary level to perform a vulnerability …
a need to identify security-critical vulnerabilities at the binary level to perform a vulnerability …
Vulpecker: an automated vulnerability detection system based on code similarity analysis
Software vulnerabilities are the fundamental cause of many attacks. Even with rapid
vulnerability patching, the problem is more complicated than it looks. One reason is that …
vulnerability patching, the problem is more complicated than it looks. One reason is that …
A survey on IoT & embedded device firmware security: architecture, extraction techniques, and vulnerability analysis frameworks
IoT and Embedded devices grow at an exponential rate, however, without adequate security
mechanisms in place. One of the key challenges in the cyber world is the security of these …
mechanisms in place. One of the key challenges in the cyber world is the security of these …
Automatic inference of search patterns for taint-style vulnerabilities
Taint-style vulnerabilities are a persistent problem in software development, as the recently
discovered" Heart bleed" vulnerability strikingly illustrates. In this class of vulnerabilities …
discovered" Heart bleed" vulnerability strikingly illustrates. In this class of vulnerabilities …
Research on security detection technology for internet of things terminal based on firmware code genes
X Zhu, Q Li, Z Chen, G Zhang, P Shan - IEEE Access, 2020 - ieeexplore.ieee.org
Internet of Things (IoT) terminals have firmware with heterogeneous, closed-source, and
heavy business but light security characteristics, whereas on the edge, there are limited …
heavy business but light security characteristics, whereas on the edge, there are limited …
Mitigating access control vulnerabilities through interactive static analysis
Access control vulnerabilities due to programming errors have consistently ranked amongst
top software vulnerabilities. Previous research efforts have concentrated on using automatic …
top software vulnerabilities. Previous research efforts have concentrated on using automatic …
An approach to clone detection in behavioural models
EP Antony, MH Alalfi, JR Cordy - 2013 20th Working …, 2013 - ieeexplore.ieee.org
In this paper we present an approach for identifying near-miss interaction clones in reverse-
engineered UML behavioural models. Our goal is to identify patterns of interaction …
engineered UML behavioural models. Our goal is to identify patterns of interaction …
Detecting privilege escalation attacks through instrumenting web application source code
Privilege Escalation is a common and serious type of security attack. Although experience
shows that many applications are vulnerable to such attacks, attackers rarely succeed upon …
shows that many applications are vulnerable to such attacks, attackers rarely succeed upon …