The authorization mechanism of smart devices is mainly implemented by firmware, yet many smart devices have security issues about their firmware. Limited research has focused on securing the firmware of smart devices, although increasingly more smart devices are used to deal with the very sensitive applications, activities, and data of users. Thus, research on smart device firmware security is of growing importance. Disassembly is a common method for evaluating the security of authorization mechanisms. When disassembling firmware, the processor type of the running environment and the image base of the firmware should first be determined. In general, the processor type can be obtained by tearing down the device or consulting the product manual. However, it is not easy to determine the image base of firmware. Since the processors of many smart devices are ARM architectures, in this paper, we focus on firmware under the ARM architecture and propose an automated method for determining the image base. By studying the storage law of the jump table in the firmware of ARM-based smart devices, we propose an algorithm, named determining the image base by searching jump tables (DBJT), to determine the image base. The experimental results indicate that the proposed method can successfully determine the image base of firmware, which stores the absolute address in the jump table.

中文翻译：

---

确定用于安全分析的智能设备固件的映像库

智能设备的授权机制主要由固件实现，但是许多智能设备的固件存在安全问题。尽管越来越多的智能设备用于处理用户非常敏感的应用程序，活动和数据，但是有限的研究集中在保护智能设备的固件上。因此，对智能设备固件安全性的研究变得越来越重要。拆卸是评估授权机制安全性的常用方法。拆卸固件时，应首先确定运行环境的处理器类型和固件的映像库。通常，可以通过拆卸设备或查阅产品手册来获得处理器类型。但是，确定固件的映像库并不容易。由于许多智能设备的处理器都是ARM体系结构，因此在本文中，我们将重点放在ARM体系结构下的固件上，并提出一种确定图像基础的自动化方法。通过研究基于ARM的智能设备固件中跳转表的存储规律，我们提出了一种算法，即通过搜索跳转表（DBJT）确定数据库来确定数据库。实验结果表明，该方法可以成功确定固件的映像库，该映像库将绝对地址存储在跳转表中。通过搜索跳转表（DBJT）来确定数据库的名称。实验结果表明，该方法可以成功确定固件的映像库，该映像库将绝对地址存储在跳转表中。通过搜索跳转表（DBJT）来确定数据库的名称。实验结果表明，该方法可以成功确定固件的映像库，该映像库将绝对地址存储在跳转表中。