Sciweavers

SEKE
2010
Springer

A String Constraint Solver for Detecting Web Application Vulnerability

13 years 9 months ago
A String Constraint Solver for Detecting Web Application Vulnerability
Given the bytecode of a software system, is it possible to automatically generate attack signatures that reveal its vulnerabilities? A natural solution would be symbolically executing the target system and constructing constraints for matching path conditions and attack patterns. Clearly, the constraint solving technique is the key to the above research. This paper presents Simple Linear String Equation (SISE), a formalism for specifying constraints on strings. SISE uses finite state transducers to precisely model various regular replacement operations, which makes it applicable for analyzing text processing programs such as web applications. We present a recursive algorithm that computes the solution pool of a SISE. Given the solution pool, a concrete variable solution can be generated. The algorithm is implemented in a Java constraint solver called SUSHI, which is applied to security analysis of web applications.
Xiang Fu, Chung-Chih Li
Added 30 Jan 2011
Updated 30 Jan 2011
Type Journal
Year 2010
Where SEKE
Authors Xiang Fu, Chung-Chih Li
Comments (0)