標題: SWIFT: Decoupled System-Wide Information Flow Tracking and its Optimizations
作者: Wang, Chiwei
Shieh, Shiuhpyng Winston
交大名義發表
National Chiao Tung University
關鍵字: binary translation;emulator optimization;information flow tracking;taint analysis;sandbox
公開日期: 1-Jul-2015
摘要: Information flow analysis is a widely-adopted technique in software testing and malware analysis. For information flow analysis, a system-level emulator equipped with dynamic information flow tracking capability, DIFT, is needed. However, its effectiveness comes at a price of severe performance degradation due to interleaved system emulation and DIFT analysis. In this paper, a decoupled system-wide information flow tracking scheme, SWIFT, is proposed. Through decoupling system-wide information flow tracking from emulation, SWIFT regains the memory locality and code optimization. The proposed methods are able to aggressively eliminate dependency between the system-level emulator and the analysis thread. Our performance evaluation indicates that, under the same hardware specifications, SWIFT runs 2.74 similar to 7.48 times faster than the conventional interleaved design while being benchmarked by Pass Mark Performance Test 6.0. The performance improvement consequently makes the online analysis feasible in practice.
URI: http://hdl.handle.net/11536/128045
ISSN: 1016-2364
期刊: JOURNAL OF INFORMATION SCIENCE AND ENGINEERING
Volume: 31
起始頁: 1413
結束頁: 1429
Appears in Collections:Articles