面向进程多变体软件系统的攻击面定性建模分析

doi:10.11959/j.issn.2096-109x.2022059

Abstract

Abstract:

Attack surface is an important index to measure security of software system.The general attack surface model is based on the I/O automata model to model the software system, which generally uses a non-redundant architecture and it is difficult to apply to heterogeneous redundant system architectures such as multi variant systems.Manadhatad et al.proposed a method to measure the attack surface in a dissimilar redundancy system.However, the voting granularity and voting method of the system architecture adopted by Manadhatad are different from those of the multi-variant system, which cannot accurately measure the attack surface of the multi variant system.Therefore, based on the traditional attack surface model, combined with the characteristics of heterogeneous redundant architecture of multi variant systems, the traditional attack surface model was extended and the attack surface model of multivariant systems was constructed.The attack surface of the multi variant system was represented in a formal way, and the traditional attack surface model was improved according to the voting mechanism of the multi variant system at the exit point of the system, so that it can explain the phenomenon that the attack surface of the multi variant system shrinks.Through this modeling method, the change of the attack surface of the multi variant system adopting the multi variant architecture can be explained in the running process.Then, two groups of software systems with multi variant execution architecture were used as analyzing examples.The attack surface of the software systems with the same functions as those without multi variant architecture were compared and analyzed in two situations of being attacked and not being attacked, reflecting the changes of the multi variant system in the attack surface.Combining the attack surface theory and the characteristics of the multi variant execution system, an attack surface modeling method for the multi variant execution system was proposed.At present, the changes of the attack surface of the multi variant execution system can be qualitatively analyzed.In-depth research in the quantitative analysis of the attack surface of the multi variant execution system will be continually conducted.

Key words: multi-variant execution, attack surface, attack surface metric, network security

CLC Number:

TP393

Fukang XING, Zheng ZHANG, Ran SUI, Sheng QU, Xinsheng JI. Qualitative modeling and analysis of attack surface for process multi-variant execution software system[J]. Chinese Journal of Network and Information Security, 2022, 8(5): 121-128.

Figures/Tables 7

References 19

[1]	方滨兴 . 定义网络空间安全[J]. 网络与信息安全学报, 2018,4(1): 1-5.
	FANG B X . Define cyberspace security[J]. Chinese Journal of Network and Information Security, 2018,4(1): 1-5.
[2]	邵思豪, 高庆, 马森 ,等. 缓冲区溢出漏洞分析技术研究进展[J]. 软件学报, 2018,29(5): 1179-1198.
	SHAO S H , GAO Q , MA S ,et al. Progress in research on buffer overflow vulnerability analysis technologies[J]. Journal of Software, 2018,29(5): 1179-1198.
[3]	BLETSCH T , JIANG X X , FREEH V W ,et al. Jump-oriented programming:a new class of code-reuse attack[C]// Proceedings of the 6th ACM Symposium on Information,Computer and Communications Security - ASIACCS '11. 2011: 30-40.
[4]	LEVY E . Smashing the stack for fun and profit[J]. Phrack Maga-zine, 1996,8(49): 1-25.
[5]	SHACHAM H , . The geometry of innocent flesh on the bone:return-into-libc without function calls (on the x86)[C]// Proceedings of the 14th ACM conference on Computer and communications security. 2007: 552-561.
[6]	王丰峰, 张涛, 徐伟光 ,等. 进程控制流劫持攻击与防御技术综述[J]. 网络与信息安全学报, 2019,5(6): 10-20.
	WANG F F , ZHANG T , XU W G ,et al. Overview of control-flow hijacking attack and defense techniques for process[J]. Chinese Journal of Network and Information Security, 2019,5(6): 10-20.
[7]	COWAN C , PU C , MAIER D ,et al. StackGuard:automatic adaptive detection and prevention of buffer-overflow attacks[C]// Proceedings of 7th USENIX Security Conference. 1998: 63-78.
[8]	COWAN C , BARRINGER M , BEATTIE S ,et al. FormatGuard:automatic protection from printf format string vulnerabilities[C]// Proceedings of 10th USENIX Security Symposium. 2001: 13-17.
[9]	BITTAU A , BELAY A , MASHTIZADEH A ,et al. Hacking blind[C]// Proceedings of 2014 IEEE Symposium on Security and Privacy. 2014: 227-242.
[10]	WANG Z , JIANG X X . HyperSafe:a lightweight approach to provide lifetime hypervisor control-flow integrity[C]// Proceedings of 2010 IEEE Symposium on Security and Privacy. 2010: 380-395.
[11]	马博林, 张铮, 陈源 ,等. 基于指令集随机化的抗代码注入攻击方法[J]. 信息安全学报, 2020,5(4): 30-43.
	MA B L , ZHANG Z , CHEN Y ,et al. The defense method for code-injection attacks based on instruction set randomization[J]. Journal of Cyber Security, 2020,5(4): 30-43.
[12]	COX B , EVANS D , FILIPI A ,et al. N-variant systems a secretless framework for security through diversity[J]. 15th USENIX Security Symposium, 2006: 105-120.
[13]	SALAMAT B , JACKSON T , GAL A ,et al. Orchestra:intrusion detection using parallel execution and monitoring of program variants in user-space[C]// Proceedings of the 4th ACM European conference on Computer systems. 2009: 33-46.
[14]	KONING K , BOS H , GIUFFRIDA C . Secure and efficient multi-variant execution using hardware-assisted process virtualization[C]// Proceedings of 2016 46th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN). 2016: 431-442.
[15]	张铮, 王立群, 李卫超 . 面向非相似余度信息系统的攻击面模型[J]. 通信学报, 2018,39(S2): 223-230.
	ZHANG Z , WANG L Q , LI W C . Research on formal model for an information system's attack surface with dissimilar redundant ar-chitecture[J]. Journal on Communications, 2018,39(S2): 223-230.
[16]	潘传幸, 张铮, 马博林 ,等. 面向进程控制流劫持攻击的拟态防御方法[J]. 通信学报, 2021,42(1): 37-47.
	PAN C X , ZHANG Z , MA B L ,et al. Method against process con-trol-flow hijacking based on mimic defense[J]. Journal on Commu-nications, 2021,42(1): 37-47.
[17]	马博林, 张铮, 刘浩 ,等. SQLMVED：基于多变体执行的 SQL注入运行时防御系统[J]. 通信学报, 2021,42(4): 127-138.
	MA B L , ZHANG Z , LIU H ,et al. SQLMVED:SQL injection runtime prevention system based on multi-variant execution[J]. Journal on Communications, 2021,42(4): 127-138.
[18]	MANADHATA P K , WING J M . A formal model for a system's attack surface[M]// Advances in Information Security. New York,NY: Springer New York, 2011: 1-28.
[19]	MANADHATA P K . Game theoretic approaches to attack surface shifting[M]// Moving Target Defense II. New York,NY: Springer New York, 2012: 1-13.

Metrics

Recommended 0

No Suggested Reading articles found!

系统调用序号	普通系统	多变体系统进程1	多变体系统进程2
1	Brk	Brk	Brk
2	Mmap	Mmap	Mmap
3	Access	Access	Access
4	Open	Open	Open
5	Fstat	Fstat	Fstat
6	Mmap	Mmap	Mmap
7	Close	Close	Close
8	Open	Open	Open
9	Read	Read	Read
10	Fstat	Fstat	Fstat
11	Mmap	Mmap	Mmap
12	Mprotect	Mprotect	Mprotect
13	Write	Write	Write
14	Exit	Exit	Exit

系统调用序号	普通系统	多变体系统进程1	多变体系统进程2
1	Brk	Brk	Brk
2	Mmap	Mmap	Mmap
3	Access	Access	Access
4	Open	Open	Open
5	Fstat	Fstat	Fstat
6	Mmap	Mmap	Mmap
7	Close	Close	Close
8	Open	Open	Open
9	Fstat	Fstat	Fstat
10	Mmap	Mmap	Mmap
11	Close	Close	Close
12	Open	Open	Open
13	Read	Read	Read
14	Fstat	Fstat	Fstat
15	Mmap	Mmap	Mmap
16	Mprotect	Mprotect	Mprotect
17	Write	Write	Write
18	Exit	Exit	Exit

系统调用序号	普通系统	多变体系统进程1	多变体系统进程2
1	Brk	Brk	Brk
2	Mmap	Mmap	Mmap
3	Access	Access	Access
4	Open	Open	Open
5	Fstat	Fstat	Fstat
6	Mmap	Mmap	Mmap
7	Close	Close	Close
8	Open	Open	Open
9	Read
10	Write
11	Mmap
12	Write
13	Write
…	Fstat
注：表中的空白表示该时间进程已结束，不再产生系统调用。

系统调用序号	普通系统	多变体系统进程1	多变体系统进程2
1	Brk	Brk	Brk
2	Mmap	Mmap	Mmap
3	Access	Access	Access
4	Open	Open	Open
5	Fstat	Fstat	Fstat
6	Mmap	Mmap	Mmap
7	Close	Close	Close
8	Open	Open	Open
9	Fstat	Fstat	Fstat
10	Mmap	Mmap	Mmap
11	Close	Close	Close
12	Open	Open	Open
13	Read
14	Write
15	Mmap
16	Write
17	Write
…	Fstat

Qualitative modeling and analysis of attack surface for process multi-variant execution software system

RichHTML

PDF下载

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 7

References 19

Related Articles 15

Metrics

Recommended 0

[1]	Heli WANG, Qiao YAN. Selfish mining detection scheme based on the characters of transactions [J]. Chinese Journal of Network and Information Security, 2023, 9(2): 104-114.
[2]	Dong LI, Yanni HAO, Shenghui PENG, Ruijie ZI, Ximeng LIU. Network security of the National Natural Science Foundation of China: today and prospects [J]. Chinese Journal of Network and Information Security, 2022, 8(6): 92-101.
[3]	Zenan WANG, Jiahao LI, Chaohong TAN, Dechang PI. Design and analysis of intelligent service chain system for network security resource pool [J]. Chinese Journal of Network and Information Security, 2022, 8(4): 175-181.
[4]	Xinya WANG, Guang HUA, Hao JIANG, Haijian ZHANG. Survey on intellectual property protection for deep learning model [J]. Chinese Journal of Network and Information Security, 2022, 8(2): 1-14.
[5]	Yang WANG, Guangming TANG, Shuo WANG, Jiang CHU. Defense mechanism of SDN application layer against DDoS attack based on API call management [J]. Chinese Journal of Network and Information Security, 2022, 8(2): 73-87.
[6]	Tao WANG, Hongchang CHEN. Multi-objective optimization placement strategy for SDN security controller considering Byzantine attributes [J]. Chinese Journal of Network and Information Security, 2021, 7(3): 72-84.
[7]	Chenglei ZHANG, Yulong FU, Hui LI, Jin CAO. Research on security scenarios and security models for 6G networking [J]. Chinese Journal of Network and Information Security, 2021, 7(1): 28-45.
[8]	QIN Yuhai,LIU Luyuan,GAO Haohang,LIU Shengqiao,DONG Han. Innovative professional skills competition to create a police practice talents [J]. Chinese Journal of Network and Information Security, 2019, 5(3): 75-80.
[9]	Hao HU, Yuling LIU, Yuchen ZHANG, Hongqi ZHANG. Survey of attack graph based network security metric [J]. Chinese Journal of Network and Information Security, 2018, 4(9): 1-16.
[10]	Juntai HU,Zhenyu WU,Xiao FU,Yichao WANG. Game model based security strategy of heterogeneous controllers in the cloud [J]. Chinese Journal of Network and Information Security, 2018, 4(9): 52-59.
[11]	Binghao YAN,Guodong HAN. Combinatorial intrusion detection model based on deep recurrent neural network and improved SMOTE algorithm [J]. Chinese Journal of Network and Information Security, 2018, 4(7): 48-59.
[12]	Yuyang ZHOU, Guang CHENG, Chunsheng GUO. Risk assessment method for network attack surface based on Bayesian attack graph [J]. Chinese Journal of Network and Information Security, 2018, 4(6): 11-22.
[13]	Yang CHEN,Hongchao HU,Wenyan LIU,Shumin HUO,Hao LIANG. Dynamic and heterogeneous Byzantine system in cloud [J]. Chinese Journal of Network and Information Security, 2018, 4(5): 1-9.
[14]	Wenyan LIU,Shumin HUO,Qing TONG,Miao ZHANG,Chao QI. Research on models of network security evaluation and analysis [J]. Chinese Journal of Network and Information Security, 2018, 4(4): 1-11.
[15]	Haocheng ZHANG,Xiaojie WU,Xiang TANG,Runxuan SHU,Tianchen DING,Xiaoju DONG. System detecting network anomaly with visualization techniques [J]. Chinese Journal of Network and Information Security, 2018, 4(2): 40-54.