Improving Software Security with Dynamic Binary Instrumentation presented at InfoSec SouthWest 2012

by Richard Johnson,

Tags: Security

Summary : This talk will present an analysis of popular dynamic binary instrumentation frameworks, focusing on the performance of the engine and the feasibility for use in vulnerability mitigation technologies.
Dynamic Binary Instrumentation (DBI) is a process control technique that forgoes the traditional debugging facilities supplied by the operating system in favor of an in-process framework for manipulating the runtime state of a process. The most common frameworks available for performing DBI include Pin, DynamoRIO, and Valgrind. These frameworks facilitate the development of Dynamic Binary Analysis (DBA) tools that can perform security related tasks such as process tracing and debugging or sandboxing and other exploit mitigations. This talk will begin with a discussion the general shared architecture of a DBI framework. Further, an analysis of the performance of each engine and the feasibility for use in vulnerability mitigation technologies will be presented and illustrated with code examples.