Proceedings of ISP RAS

Development of taint-analysis methods to solve the problem of searching of undeclared features.

A.Y. Tichonov, A.I. Avetisyan.


Program analysis problem will be viewed as the process of extracting some properties of analyzed program. It might be the description of implemented algorithms, output data formats, such as file formats, network packet formats and structures of data in memory, or information of existing bugs. In this article we will consider an approach to program analysis to identify some types of program beetles which break confidentiality. In this approach, programs are presented in the form of stripped executables without source code. According to Russian National Standard (ГОСТ Р 51275-2006) a program beetle is intentionally introduced into the software functional object which under certain circumstances can initialize an implementation of software’s undeclared features. A program beetle may be implemented either as some malicious program, or as a part of the software code.

The proposed approach described in the fifth section of the article. This approach was implemented in our program analysis tool named TREX (TRace EXplorer). The first four sections briefly describe TREX implementation.


software security, undeclared features, malicious code, taint-analysis


Proceedings of the Institute for System Programming, vol. 20, 2011, pp. 9-24.

ISSN 2220-6426 (Online), ISSN 2079-8156 (Print).

Full text of the paper in pdf (in Russian) Back to the contents of the volume