• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文期刊>Operating systems review >TaintEraser: Protecting Sensitive Data Leaks Using Application-Level Taint Tracking
【24h】

TaintEraser: Protecting Sensitive Data Leaks Using Application-Level Taint Tracking

机译:TaintEraser:使用应用程序级污染跟踪来保护敏感数据泄漏

获取原文
获取原文并翻译 | 示例
           
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

We present TaintEraser, a new tool that tracks the movement of sensitive user data as it flows through off-the-shelf applications. TaintEraser uses application-level dynamic taint analysis to let users run applications in their own environment while preventing unwanted information exposure. It is made possible by techniques we developed for accurate and efficient tainting: (1) Semantic-aware instruction-level tainting is critical to track taint accurately, without explosion or loss. (2) Function summaries provide an interface to handle taint propagation within the kernel and reduce the overhead of instruction-level tracking. (3) On-demand instrumentation enables fast loading of large applications. Together, these techniques let us analyze large, multi-threaded, networked applications in near real-time. In tests on Internet Explorer, Yahoo! Messenger, and Windows Notepad, TaintEraser generated no false positives and instrumented fewer than 5% of the executed instructions while precisely scrubbing user-defined sensitive data that would otherwise have been exposed to restricted output channels. Our research provides the first evidence that it is viable to track taint accurately and efficiently for real, interactive applications running on commodity hardware.
机译:我们将介绍TaintEraser,这是一种新工具,可以跟踪敏感用户数据在现有应用程序中的流动。 TaintEraser使用应用程序级别的动态污点分析,使用户可以在自己的环境中运行应用程序,同时防止不必要的信息泄露。我们开发的用于准确有效的污点处理技术使之成为可能:(1)语义感知的指令级污点对于准确跟踪污点而不会爆炸或丢失至关重要。 (2)函数摘要提供了一个接口来处理内核中的异味传播,并减少了指令级跟踪的开销。 (3)按需检测可以快速加载大型应用程序。这些技术共同使我们能够近乎实时地分析大型,多线程,联网的应用程序。在Internet Explorer上的测试中,Yahoo! Messenger和Windows记事本,TaintEraser不会产生误报,并且检测不到执行指令的5%,同时精确地清理用户定义的敏感数据,否则这些数据会暴露给受限的输出通道。我们的研究提供了第一个证据,表明可以准确有效地跟踪在商品硬件上运行的真实,交互式应用程序的污点。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号