期刊名称:International Journal of Advanced Research in Computer Engineering & Technology (IJARCET)
印刷版ISSN:2278-1323
出版年度:2013
卷号:2
期号:12
页码:3247-3251
出版社:Shri Pannalal Research Institute of Technolgy
摘要:Dynamic loading plays a major role in software development process. The flexibility in it allows linking a component dynamically and using its exported functionalities. Dynamic loading allows the system to perform, a library can be loaded or unloaded in the memory, then the loaded library functions and variables can be retrieved and executed or accessed. The dynamic analysis technique deals with detection of vulnerable and unsafe dynamic component loadings in the system. This work introduces the first automated technique to detect and analyze vulnerabilities and errors related to the dynamic component loading, and also detects for safe components loaded in the memory. The analysis comprises of two phases namely, Online Phase to apply dynamic binary instrumentation to collect runtime information on component loading, and Offline Phase to analyze the collected information to detect vulnerable component loadings. The technique uses a set of practical tools for detecting and removing unsafe component loadings on Microsoft Windows and Linux. An extensive analysis of unsafe component loadings on various types of popular software has been conducted.
