JP7838662B2 - 脆弱性発見装置、脆弱性発見方法及び脆弱性発見プログラム - Google Patents

脆弱性発見装置、脆弱性発見方法及び脆弱性発見プログラム

Info

Publication number
JP7838662B2
JP7838662B2 JP2024550947A JP2024550947A JP7838662B2 JP 7838662 B2 JP7838662 B2 JP 7838662B2 JP 2024550947 A JP2024550947 A JP 2024550947A JP 2024550947 A JP2024550947 A JP 2024550947A JP 7838662 B2 JP7838662 B2 JP 7838662B2
Authority
JP
Japan
Prior art keywords
virtual machine
instruction
execution
unit
branch
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
JP2024550947A
Other languages
English (en)
Japanese (ja)
Other versions
JPWO2024079793A1 (https=
Inventor
利宣 碓井
裕平 川古谷
誠 岩村
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
NTT Inc
NTT Inc USA
Original Assignee
Nippon Telegraph and Telephone Corp
NTT Inc USA
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nippon Telegraph and Telephone Corp, NTT Inc USA filed Critical Nippon Telegraph and Telephone Corp
Publication of JPWO2024079793A1 publication Critical patent/JPWO2024079793A1/ja
Application granted granted Critical
Publication of JP7838662B2 publication Critical patent/JP7838662B2/ja
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Stored Programmes (AREA)
  • Debugging And Monitoring (AREA)
JP2024550947A 2022-10-11 2022-10-11 脆弱性発見装置、脆弱性発見方法及び脆弱性発見プログラム Active JP7838662B2 (ja)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/JP2022/037924 WO2024079793A1 (ja) 2022-10-11 2022-10-11 脆弱性発見装置、脆弱性発見方法及び脆弱性発見プログラム

Publications (2)

Publication Number Publication Date
JPWO2024079793A1 JPWO2024079793A1 (https=) 2024-04-18
JP7838662B2 true JP7838662B2 (ja) 2026-04-01

Family

ID=90668967

Family Applications (1)

Application Number Title Priority Date Filing Date
JP2024550947A Active JP7838662B2 (ja) 2022-10-11 2022-10-11 脆弱性発見装置、脆弱性発見方法及び脆弱性発見プログラム

Country Status (2)

Country Link
JP (1) JP7838662B2 (https=)
WO (1) WO2024079793A1 (https=)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN119402400B (zh) * 2024-11-01 2025-10-03 浙江工业大学 一种基于状态引导以及种子变异的网络协议模糊测试方法和装置

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2022180702A1 (ja) 2021-02-24 2022-09-01 日本電信電話株式会社 解析機能付与装置、解析機能付与プログラム及び解析機能付与方法

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2022180702A1 (ja) 2021-02-24 2022-09-01 日本電信電話株式会社 解析機能付与装置、解析機能付与プログラム及び解析機能付与方法

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
CHEN, Yuting et al.,Deep Differential Testing of JVM Implementations,2019 IEEE/ACM 41st International Conference on Software Engineering (ICSE),2019年05月25日,pages 1257-1268
KYLE, Stephen et al.,Application of Domain-aware Binary Fuzzing to Aid Android Virtual Machine Testing,ACM SIGPLAN,2015年03月14日,pages 121-132
碓井 利宣 ほか,スクリプト実行環境に対する実行遅延・実行停止を回避する機能の自動付与手法,情報処理学会 シンポジウム コンピュータセキュリティシンポジウム 2021,日本,情報処理学会,2021年10月19日,pages 794-801

Also Published As

Publication number Publication date
WO2024079793A1 (ja) 2024-04-18
JPWO2024079793A1 (https=) 2024-04-18

Similar Documents

Publication Publication Date Title
He et al. Sofi: Reflection-augmented fuzzing for javascript engines
Eschweiler et al. Discovre: Efficient cross-architecture identification of bugs in binary code.
US11048798B2 (en) Method for detecting libraries in program binaries
JP7517585B2 (ja) 解析機能付与装置、解析機能付与プログラム及び解析機能付与方法
JP7115552B2 (ja) 解析機能付与装置、解析機能付与方法及び解析機能付与プログラム
Zhang et al. Path transitions tell more: Optimizing fuzzing schedules via runtime program states
BR102015017215A2 (pt) método implementado em computador para classificação de aplicativos móveis, e, programa de computador codificado em um meio de armazenamento não-trasitório
Zhou et al. Arcturus: Full coverage binary similarity analysis with reachability-guided emulation
Imtiaz et al. Predicting vulnerability for requirements
Singh et al. Malware analysis using multiple API sequence mining control flow graph
JP7838662B2 (ja) 脆弱性発見装置、脆弱性発見方法及び脆弱性発見プログラム
CN113626823B (zh) 一种基于可达性分析的组件间交互威胁检测方法及装置
Khan et al. Detecting wake lock leaks in android apps using machine learning
CN118656835A (zh) 缓冲区溢出漏洞检测方法、装置、存储介质及计算机设备
WO2024214263A1 (ja) 解析機能付与装置、解析機能付与方法及び解析機能付与プログラム
Hüther et al. Machine learning for SAST: a lightweight and adaptable approach
CN115757119A (zh) 程序崩溃原因确定方法及装置
JP7800717B2 (ja) 脆弱性発見装置、脆弱性発見方法及び脆弱性発見プログラム
JP7800716B2 (ja) 解析機能付与装置、解析機能付与方法および解析機能付与プログラム
JP7800718B2 (ja) 解析機能付与装置、解析機能付与方法及び解析機能付与プログラム
JP7794327B2 (ja) 解析機能付与装置、解析機能付与方法および解析機能付与プログラム
Zhang et al. Research and Implementation of Open Source Component Library Detection for Binary Programs
WO2024214262A1 (ja) 解析機能付与装置、解析機能付与方法及び解析機能付与プログラム
EP4411580B1 (en) Method for identifying one or more exploitable vulnerabilities in device firmware of an iot device
WO2024214261A1 (ja) 解析装置、解析方法及び解析プログラム

Legal Events

Date Code Title Description
A621 Written request for application examination

Free format text: JAPANESE INTERMEDIATE CODE: A621

Effective date: 20250306

A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20251202

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20260130

TRDD Decision of grant or rejection written
A01 Written decision to grant a patent or to grant a registration (utility model)

Free format text: JAPANESE INTERMEDIATE CODE: A01

Effective date: 20260217

A61 First payment of annual fees (during grant procedure)

Free format text: JAPANESE INTERMEDIATE CODE: A61

Effective date: 20260302

R150 Certificate of patent or registration of utility model

Ref document number: 7838662

Country of ref document: JP

Free format text: JAPANESE INTERMEDIATE CODE: R150