Abstract

Dynamic taint analysis (DTA), as a fundamental analysis technique, is widely used in security, privacy, and diagnosis, etc. As DTA demands to collect and analyze massive taint data online, it suffers extremely high runtime overhead. Over the past decades, numerous attempts have been made to lower the overhead of DTA. Unfortunately, the reductions they achieved are marginal, causing DTA only applicable to the debugging/testing scenarios. In this paper, we propose and implement HardTaint, a system that can realize production-run dynamic taint tracking. HardTaint adopts a hybrid and systematic design which combines static analysis, selective hardware tracing and parallel graph processing techniques. The comprehensive evaluations demonstrate that HardTaint introduces only around 8% runtime overhead which is an order of magnitude lower than the state-of-the-arts, while without sacrificing any taint detection capability.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
HYBit: A Hybrid Taint Analyzing Framework for Binary Programs
Erzhou Zhu ... Xuejian Li
-
Erzhou Zhu, et. al.Erzhou Zhu ... Xuejian Li
01 Jan 2013
StraightTaint: decoupled offline symbolic taint analysis
Jiang Ming ... Jun Wang
-
Jiang Ming, et. al.Jiang Ming ... Jun Wang
25 Aug 2016
FSAFlow: Lightweight and Fast Dynamic Path Tracking and Control for Privacy Protection on Android Using Hybrid Analysis with State-Reduction Strategy
Zhi Yang ... Xingyuan Chen
-
Zhi Yang, et. al.Zhi Yang ... Xingyuan Chen
01 May 2022
A review of auxiliary hardware architectures supporting dynamic taint analysis
Af Y ... Yuntian Zhao
-
Af Y, et. al.Af Y ... Yuntian Zhao
28 Jul 2022
View more papers

More From: Proceedings of the ACM on Programming Languages

Paper Title
Journal
Date
Author
On the Expressive Power of Languages for Static Variability
Paul Maximilian Bittner ... Eric Walkingshaw
Proceedings of the ACM on Programming Languages | VOL. 8
Paul Maximilian Bittner, et. al.Paul Maximilian Bittner ... Eric Walkingshaw
08 Oct 2024
Type Inference Logics
Denis Carnier ... François Pottier
Proceedings of the ACM on Programming Languages | VOL. 8
Denis Carnier, et. al.Denis Carnier ... François Pottier
08 Oct 2024
Compositionality and Observational Refinement for Linearizability with Crashes
Arthur Oliveira Vale ... Yixuan Chen
Proceedings of the ACM on Programming Languages | VOL. 8
Arthur Oliveira Vale, et. al.Arthur Oliveira Vale ... Yixuan Chen
08 Oct 2024
Making Sense of Multi-threaded Application Performance at Scale with NonSequitur
Augustine Wong ... Ivan Beschastnikh
Proceedings of the ACM on Programming Languages | VOL. 8
Augustine Wong, et. al.Augustine Wong ... Ivan Beschastnikh
08 Oct 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.