Show simple item record

dc.contributor.advisor Wallach, Dan
dc.creatorSong, Daniel Wonjoon
dc.date.accessioned 2020-02-05T15:07:44Z
dc.date.available 2020-02-05T15:07:44Z
dc.date.created 2015-12
dc.date.issued 2016-04-25
dc.date.submitted December 2015
dc.identifier.citation Song, Daniel Wonjoon. "Finding Tizen security bugs through whole-system static analysis." (2016) Master’s Thesis, Rice University. https://hdl.handle.net/1911/108001.
dc.identifier.urihttps://hdl.handle.net/1911/108001
dc.description.abstract Tizen is a new Linux-based open source platform for consumer devices including smartphones, televisions, vehicles, wearables, and eventually other IoT devices. While Tizen provides kernel- level mandatory policy enforcement, it has a large collection of libraries, implemented in a mix of C and C++, which make their own security checks, raising concerns if any checks are missing or incomplete. In this research, we describe the design and engineering of a static analysis engine which drives a control flow analysis for the full library stack. We implemented the static analysis as an extension to LLVM, requiring us to improve LLVM’s native analysis features with respect to precision and scalability. Our extended static analysis handles knotty issues like the coexistence of C++ inheritance with C function pointer use. With our tools, we found several unexpected behaviors in the Tizen system, demonstrating the importance of automated checking. We believe that our approach will be applicable to future platforms for the emerging Internet of Things (IoT) which native code is a necessity for many consumer devices.
dc.format.mimetype application/pdf
dc.language.iso eng
dc.subjectSecurity
Static Analysis
dc.title Finding Tizen security bugs through whole-system static analysis
dc.type Thesis
dc.date.updated 2020-02-05T15:07:45Z
dc.type.material Text
thesis.degree.department Computer Science
thesis.degree.discipline Engineering
thesis.degree.grantor Rice University
thesis.degree.level Masters
thesis.degree.name Master of Science


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record