A Dynamic Marking Method for Implicit Information Flow in Dynamic Taint Analysis
See PDF on disk.
implicit tainted data
Tool is pipeline. It is based on!
1 Avalanche method is described. They call it dynamic taint analysis. If not deal with implicit information flow, it will cause under-tainting problem. For source code there is simple solution: get CFG and record all control dependencies. But for binary code disassembling is a problem. If we mark all assignments after control branches as tainted, we get over-tainting. They propose dynamic marking method to handle specific type of dependencies. Their tool is pipeline. 2
Sergey Vartanov, 2007–2020