Finding SMM Privilege-Escalation Vulnerabilities in UEFI Firmware with Protocol-Centric Static Analysis.
Jiawei YinMenghao LiWei WuDandan SunJianhua ZhouWei HuoJingling XuePublished in: IEEE Symposium on Security and Privacy (2022)
Keyphrases
- static analysis
- dynamic analysis
- source code
- lightweight
- malicious code
- abstract interpretation
- symbolic execution
- java card
- regular expressions
- test generation
- power consumption
- test suite
- operating system
- computer systems
- case study
- security protocols
- security issues
- cryptographic protocols
- information security
- database systems