Up

A Dynamic Marking Method for Implicit Information Flow in Dynamic Taint Analysis

A Dynamic Marking Method for Implicit Information Flow in Dynamic Taint Analysis
1 ยท 2

See PDF on disk.

implicit tainted data

Tool is pipeline. It is based on Avalanche!

1 Avalanche method is described. They call it dynamic taint analysis. If not deal with implicit information flow, it will cause under-tainting problem. For source code there is simple solution: get CFG and record all control dependencies. But for binary code disassembling is a problem. If we mark all assignments after control branches as tainted, we get over-tainting. They propose dynamic marking method to handle specific type of dependencies. Their tool is pipeline. 2 

Sergey Vartanov, 2007–2020