摘要
物联网设备资源有限,导致传统的漏洞检测技术难以有效应用。固件仿真技术为解决这一问题提供了可能,但现有方案存在硬件依赖性强、运行成本高和可移植性差等问题。针对这些问题,文章提出一种基于库函数动态替换的物联网设备固件仿真方案。首先,设计了基于人机协同的固件仿真方法,通过固件分析和固件托管构建仿真环境,并在固件文件获取过程中引入专家经验。然后,提出一种基于符号执行的库函数替换技术,通过提取上一阶段的关键信息,利用符号执行技术进行分析并指导库函数生成,最终通过将库函数编译为动态链接库完成库函数替换。实验结果表明,相较于FIRMADYNE,文章所提方案的仿真速度平均提升了80.50%,优化后的符号执行运行速度约为优化前的两倍。同时,通过漏洞复现和漏洞挖掘技术进行验证,实验结果表明,该方案的仿真保真度能够满足漏洞检测和漏洞挖掘的需求。
The limited resources of IoT devices make it difficult for traditional vulnerability detection technologies to be effectively applied to these devices.Firmware simulation technology provides a way to solve this problem,but the existing firmware simulation solutions have problems such as strong hardware dependence,high operating costs,and poor portability.In view of the shortcomings of existing simulation solutions,this paper proposed a firmware simulation scheme of IoT devices based on dynamic substitution of library functions.Firstly,a firmware simulation method based on human-computer collaboration was designed.The simulation environment was built through firmware analysis and firmware hosting,and expert experience in the process of firmware file acquisition was introduced.Then,a library function replacement technology based on symbolic execution was designed to extract key information from the previous stage,symbolic execution was used to analyze and guide library function generation,and finally compiled the library function into a dynamic link library to complete the library function replacement.The experimental results show that the simulation speed of the proposed scheme in the article has increased by an average of 80.50%compared to FIRMADYNE,and the optimized symbol execution speed has increased by more than 100%compared to before optimization.At the same time,through vulnerability replication and vulnerability mining verification,the simulation fidelity of this scheme can meet the requirements of vulnerability detection and mining.
作者
张光华
常继友
陈放
毛伯敏
王鹤
张建燕
ZHANG Guanghua;CHANG Jiyou;CHEN Fang;MAO Bomin;WANG He;ZHANG Jianyan(School of Cyber Engineering,Xidian University,Xi’an 710071,China;School of Information Science and Engineering,Hebei University of Science and Technology,Shijiazhuang 050018,China;Hebei Intelligent Internet of Things Technology Innovation Center,Shijiazhuang 050018,China;Yangtze River Delta Research Institute of Northwestern Polytechnical University,Taicang 215400,China)
出处
《信息网络安全》
北大核心
2025年第7期1053-1062,共10页
Netinfo Security
基金
国家自然科学基金[62072239,62372236]
苏州姑苏创新创业领军人才计划-青年创新领军人才项目[ZXL2022458]。
关键词
物联网
固件仿真
库函数替换
交叉编译
漏洞挖掘
Internet of things
firmware simulation
library function replacement
cross-compilation
vulnerability mining
