all InfoSec news
LibAM: An Area Matching Framework for Detecting Third-party Libraries in Binaries. (arXiv:2305.04026v1 [cs.SE])
cs.CR updates on arXiv.org arxiv.org
Third-party libraries (TPLs) are extensively utilized by developers to
expedite the software development process and incorporate external
functionalities. Nevertheless, insecure TPL reuse can lead to significant
security risks. Existing methods are employed to determine the presence of TPL
code in the target binary. Existing methods, which involve extracting strings
or conducting function matching, are employed to determine the presence of TPL
code in the target binary. However, these methods often yield unsatisfactory
results due to the recurrence of strings and …
area binary code developers development development process external framework insecure party process reuse risks security security risks software software development target third third-party