Skip to main content
SpringerLink
Log in
Book cover

International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing

IMIS 2020: Innovative Mobile and Internet Services in Ubiquitous Computing pp 304–312Cite as

A Dynamic Instrumentation Technology for IoT Devices

  • Conference paper
  • First Online:

  • 1253 Accesses

Part of the book series: Advances in Intelligent Systems and Computing ((AISC,volume 1195))

Abstract

With the rapid development of electronic and information technology, IoT devices have become widely used in various fields. Increasing attention has been paid to the performance and security analysis of IoT devices. Dynamic instrumentation is a common process in software analysis for acquiring runtime information. However, due to the limited software and hardware resources in IoT devices, most dynamic instrumentation tools do not support IoT devices. In this paper, we provide an analysis tool, IoTDIT, to solve the current problem of runtime detection in IoT devices. IoTDIT uses static analysis and ptrace system calls to obtain dynamic firmware information, which can aid in firmware performance analysis and security detection. We perform experiments to verify the performance and effectiveness of the proposed instrumentation tool.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   169.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   219.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

References

  1. Nordrum, A.: The internet of fewer things [news]. IEEE Spectr. 53(10), 12–13 (2016)

    Article  Google Scholar 

  2. Rawat, S., Jain, V., Kumar, A, Bos, H.: VUzzer: application-aware evolutionary fuzzing. In: Network and Distributed System Security Symposium, San Diego, CA, USA (2017)

    Google Scholar 

  3. Kargén, U., Shahmehri, N.: Turning programs against each other: high coverage fuzz-testing using binary-code mutation and dynamic slicing. In: Proceedings of the 2015 10th Joint Meeting on Foundations of Software Engineering, pp. 782–792 (2015)

    Google Scholar 

  4. Babić, D., Martignoni, L., McCamant, S., Song, D.: Statically-directed dynamic automated test generation. In: Proceedings of the 2011 International Symposium on Software Testing and Analysis, Toronto, ON, Canada, 17–21 July 2011, pp. 12–22 (2011)

    Google Scholar 

  5. Rebert, A., Cha, S.K., Avgerinos, T., Foote, J., Warren, D., Grieco, G. Brumley, D.: Optimizing seed selection for fuzzing. In: USENIX Security, San Diego, CA, USA, pp. 861–875 (2014)

    Google Scholar 

  6. Pak, B.S.: Hybrid fuzz testing: discovering software bugs via fuzzing and symbolic execution. Master’s thesis, Carnegie Mellon University (2012)

    Google Scholar 

  7. Godefroid, P., Klarlund, N., Sen, K.: Dart: directed automated random testing. SIGPLAN Not. 40(6), 213–223 (2005)

    Article  Google Scholar 

  8. Avgerinos, T., Rebert, A., Cha, S.K., Brumley, D.: Enhancing symbolic execution with veritesting. In: Proceedings of the 36th International Conference on Software Engineering, Hyderabad, India, pp. 1083–1094 (2014)

    Google Scholar 

  9. Höschele, M., Zeller, A.: Mining input grammars from dynamic taints. In: Proceedings of the 31st IEEE/ACM International Conference on Automated Software Engineering, Singapore, pp. 720–725 (2016)

    Google Scholar 

  10. Cha, S.K., Woo, M., Brumley, D.: Program-adaptive mutational fuzzing. In: 2015 IEEE Symposium on Security and Privacy, San Jose, CA, USA, pp. 725–741 (2015)

    Google Scholar 

  11. Cha, S.K., Avgerinos, T., Rebert, A., Brumley, D.: Unleashing MAYHEM on binary code. In: 2012 IEEE Symposium on Security and Privacy, San Francisco, California, USA, pp. 380–394 (2012)

    Google Scholar 

  12. Chen, J., Diao, W., Zhao, Q., et al.: IoTFuzzer: discovering memory corruptions in IoT through app-based fuzzing. In: NDSS, San Diego, California, USA (2018)

    Google Scholar 

  13. Nanda, S., Li, W., Lam, L.C., Chiueh, T.C.: Bird: binary interpretation using runtime disassembly. In: CGO, New York, NY, USA, pp. 358–370 (2006)

    Google Scholar 

  14. Eustace, A., Eustace, A.: Atom: a system for building customized program analysis tools. In: PLDI, pp. 196–205 (1994)

    Google Scholar 

  15. Pani, P.: Measuring code coverage on an embedded target with highly limited resources. Master’s thesis, Graz University of Technology (2014)

    Google Scholar 

  16. Laurenzano, M.A., Tikir, M.M., Carrington, L., Snavely, A.: Pebil: efficient static binary instrumentation for Linux. In: ISPASS, White Plains, NY, USA, pp. 175–183 (2010)

    Google Scholar 

  17. Luk, C.K., Cohn, R., Muth, R., Patil, H., Klauser, A., Lowney, G., Wallace, S., Reddi, V.J., Hazelwood, K.: Pin: building customized program analysis tools with dynamic instrumentation. ACM SIGPLAN Not. 40, 190–200 (2005)

    Article  Google Scholar 

  18. Nethercote, N., Seward, J.: Valgrind: a framework for heavyweight dynamic binary instrumentation. ACM SIGPLAN Not. 42, 89–100 (2007)

    Article  Google Scholar 

  19. Bruening, D.: DynamoRIO: Dynamic Instrumentation Tool Platform. http://www.dynamorio.org/

  20. Muench, M., Stijohann, J., Kargl, F., Francillon, A., Balzarotti, D.: What you corrupt is not what you crash: challenges in fuzzing embedded devices. In: NDSS, San Diego, CA, USA (2018)

    Google Scholar 

  21. Zhao, Q., Koh, D., Raza, S., Bruening, D., Wong, W., Amarasinghe, S.: Dynamic cache contention detection in multi-threaded applications. ACM SIGPLAN Not. 46(7), 27–38 (2011)

    Article  Google Scholar 

  22. Nagy, S., Hicks, M.: Full-speed fuzzing: reducing fuzzing overhead through coverage-guided tracing. In: IEEE Symposium on Security and Privacy (SP), San Francisco, CA, USA, pp. 787–802 (2019)

    Google Scholar 

  23. She, D., Pei, K., Epstein, D., et al.: NEUZZ: efficient fuzzing with neural program smoothing. In: IEEE Symposium on Security and Privacy (SP), San Francisco, CA, USA, pp. 803–817 (2019)

    Google Scholar 

  24. Srivastava, P., Peng, H., Li, J., et al.: FirmFuzz: automated IoT firmware introspection and analysis. In: Proceedings of the 2nd International ACM Workshop on Security and Privacy for the Internet-of-Things, London, UK, pp. 15–21 (2019)

    Google Scholar 

  25. Gan, S., Zhang, C., Qin, X., et al.: Collafl: path sensitive fuzzing. In: IEEE Symposium on Security and Privacy (SP), San Francisco, CA, USA, pp. 679–696 (2018)

    Google Scholar 

  26. Capstone. http://www.capstone-engine.org

  27. Srivastava, A., Edwards, A., Vo, H.: Vulcan: binary transformation in a distributed environment. Technical report, MSR-TR-2001-50, Microsoft Research (2001)

    Google Scholar 

  28. Cantrill, B., Shapiro, M.W., Leventhal, A.H.: Dynamic instrumentation of production systems. In: USENIX Annual Technical Conference, Boston Marriott Copley Place, Boston, MA, USA, pp. 15–28 (2004)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Beijing University of Posts and Telecommunications, Beijing, China

    Chen Chen

  2. China Academy of Space Technology, Beijing, China

    Weikong Qi

  3. Air Force Discipline Inspection Commission Case Handling Support Office, Xi’an, China

    Wenting Jiang

  4. Air Force Engineering University, Xi’an, China

    Peng Sun

Authors
  1. Chen Chen
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Weikong Qi
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Wenting Jiang
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Peng Sun
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding authors

Correspondence to Chen Chen or Weikong Qi .

Editor information

Editors and Affiliations

  1. Department of Information and Communication Engineering, Faculty of Information Engineering, Fukuoka Institute of Technology, Fukuoka, Japan

    Leonard Barolli

  2. Institute of Information Technology, Lodz University of Technology, Łódź, Poland

    Aneta Poniszewska-Maranda

  3. Department of Information and Communications Engineering, Myongji University, Yongin, Seoul, Korea (Republic of)

    Hyunhee Park

Rights and permissions

Reprints and permissions

Copyright information

© 2021 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Chen, C., Qi, W., Jiang, W., Sun, P. (2021). A Dynamic Instrumentation Technology for IoT Devices. In: Barolli, L., Poniszewska-Maranda, A., Park, H. (eds) Innovative Mobile and Internet Services in Ubiquitous Computing . IMIS 2020. Advances in Intelligent Systems and Computing, vol 1195. Springer, Cham. https://doi.org/10.1007/978-3-030-50399-4_29

Download citation

Publish with us

Policies and ethics

Search

Navigation