Article (Scientific journals)
An Integrated Approach for Effective Injection Vulnerability Analysis of Web Applications through Security Slicing and Hybrid Constraint Solving
THOME, Julian; SHAR, Lwin Khin; BIANCULLI, Domenico et al.
2020In IEEE Transactions on Software Engineering, 46 (2), p. 163--195
Peer reviewed
 

Files


Full Text
tse2018.pdf
Author postprint (719.59 kB)
Download

All documents in ORBilu are protected by a user license.

Send to



Details



Keywords :
Vulnerability detection; Constraint solving; Static analysis; Search-based software engineering
Abstract :
[en] Malicious users can attack Web applications by exploiting injection vulnerabilities in the source code. This work addresses the challenge of detecting injection vulnerabilities in the server-side code of Java Web applications in a scalable and effective way. We propose an integrated approach that seamlessly combines security slicing with hybrid constraint solving; the latter orchestrates automata-based solving with meta-heuristic search. We use static analysis to extract minimal program slices relevant to security from Web programs and to generate attack conditions. We then apply hybrid constraint solving to determine the satisfiability of attack conditions and thus detect vulnerabilities. The experimental results, using a benchmark comprising a set of diverse and representative Web applications/services as well as security benchmark applications, show that our approach (implemented in the JOACO tool) is significantly more effective at detecting injection vulnerabilities than state-of-the-art approaches, achieving 98% recall, without producing any false alarm. We also compared the constraint solving module of our approach with state-of-the-art constraint solvers, using six different benchmark suites; our approach correctly solved the highest number of constraints (665 out of 672), without producing any incorrect result, and was the one with the least number of time-out/failing cases. In both scenarios, the execution time was practically acceptable, given the offline nature of vulnerability detection.
Research center :
Interdisciplinary Centre for Security, Reliability and Trust (SnT) > Software Verification and Validation Lab (SVV Lab)
Disciplines :
Computer science
Author, co-author :
THOME, Julian ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
SHAR, Lwin Khin ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
BIANCULLI, Domenico  ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
BRIAND, Lionel ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
External co-authors :
yes
Language :
English
Title :
An Integrated Approach for Effective Injection Vulnerability Analysis of Web Applications through Security Slicing and Hybrid Constraint Solving
Publication date :
February 2020
Journal title :
IEEE Transactions on Software Engineering
ISSN :
0098-5589
Publisher :
Institute of Electrical and Electronics Engineers, New York, United States - New York
Volume :
46
Issue :
2
Pages :
163--195
Peer reviewed :
Peer reviewed
Focus Area :
Security, Reliability and Trust
FnR Project :
FNR9132112 - A Scalable And Accurate Hybrid Vulnerability Analysis Framework, 2014 (01/09/2014-14/04/2018) - Julian Thomé
Funders :
FNR - Fonds National de la Recherche
Available on ORBilu :
since 02 September 2017

Statistics


Number of views
615 (159 by Unilu)
Number of downloads
2733 (72 by Unilu)

Scopus citations®
 
18
Scopus citations®
without self-citations
17
OpenAlex citations
 
35
WoS citations
 
14

publications
33
supporting
0
mentioning
18
contrasting
0
Smart Citations
33
0
18
0
Citing PublicationsSupportingMentioningContrasting
View Citations

See how this article has been cited at scite.ai

scite shows how a scientific paper has been cited by providing the context of the citation, a classification describing whether it supports, mentions, or contrasts the cited claim, and a label indicating in which section the citation was made.

Bibliography


Similar publications



Contact ORBilu