一种软件脆弱性自动分析定位的方法

doi:10.3969/j.issn.1674-1579.2018.02.013

Abstract

Abstract: Abstract：In order to meet the requirements of high reliability that is required by many embedded software in aerospace field, a method is designed to analyze and localize the software vulnerability automatically. Based on program slicing technique and improved forward computation algorithm of dynamic slicing, firstly this method collects the program dynamic information at runtime via using dynamic slicing; and then it constructs the program slice spectrum and calculates the likelihood of each slicing statement being vulnerable by some statistics; and last it reports the localization result of software vulnerability. After discovering the vulnerability in the software, this method can analyze and localize the root that causes this vulnerability. We develop a tool to test this method and the experiment proves its effectiveness.

Key words: Keywords：software vulnerability, program slice, program spectrum, vulnerability localization

CLC Number:

WANG Tong-Lei, CHEN Chao-Hui- . A Method of Analyzing and Localizing Software Vulnerability Automatically[J]., 2018, 44(2): 73-78.

0
/ / Recommend

Add to citation manager EndNote|Reference Manager|ProCite|BibTeX|RefWorks

URL: http://journal01.magtech.org.cn/Jwk3_kjkzjs/EN/10.3969/j.issn.1674-1579.2018.02.013

http://journal01.magtech.org.cn/Jwk3_kjkzjs/EN/Y2018/V44/I2/73

[1]	HUANG Jian-Bin, HUANG Long-Fei, HAN Xu, MENG Bo, LI Zhi, WANG Wen-Long, LI Wen. [J]. , 2018, 44(5): 30-37.
[2]	HAN Dong, HUANG Pan-Feng, LIU Xi-Yao. [J]. , 2018, 44(5): 38-46.
[3]	LIU Miao, LI Zhong-Kui. [J]. , 2018, 44(5): 47-54.
[4]	SUN Yun-Long, YUAN Chang-Qing, LI Zheng-Guang. [J]. , 2018, 44(4): 16-25.
[5]	HU Jin-Chang, ZHANG Hong-Hua, WANG Ze-Guo, CHEN Shang-Shang. [J]. , 2018, 44(4): 56-60.
[6]	SU Shao-Kan, PENG Bo, WANG Li-Wei, ZHENG Wei, CHANG Tao, CHEN Ming-Yang. [J]. , 2018, 44(4): 72-78.
[7]	ZHAO Shuang, ZHANG Ya-Sheng, DAI Hua-Yu, QI Yue- . Failure Performance and Reconstruction Method of Satellite Navigation System [J]. , 2018, 44(2): 49-55.
[8]	SUN Xiu-Qing, ZHANG Du-Zhou, WANG Li, WU Fen-Zhi. An Improved Method of Projector Calibration [J]. , 2018, 44(2): 62-66.
[9]	SUI Jie, CHENG Hui-Yan, YU Cheng-Wu, WU Yan-Peng, WANG Xiao-Yan, ZHENG Ran. A Thermal Stability Analysis and Simulation Method for Boresight Axis of Star Sensor [J]. , 2017, 43(4): 37-41.
[10]	LI Tao, WU Yun. Measurement Technology Based on Stereo Vision for NonCooperative Targets [J]. , 2017, 43(4): 52-56.
[11]	WU Fen-Zhi, GUO Shao-Gang, ZHU Fei-Hu, WANG Li, WU Yun, LIU Da. TwoStep Calibration Method of Lidar Sensor Based on Calibration Field [J]. , 2017, 43(4): 57-62.
[12]	CHEN Jian-Feng, YU Cheng-Wu, CHENG Hui-Yan, SUI Jie, WU Yan-Peng. An Optimal Design of Star Tracker Baffle Based on Bipod Structure [J]. , 2017, 43(4): 68-72.
[13]	CHENG Hui-Yan, ZHONG Hong-Jun, WANG Long, YANG Jun, ZHENG Ran. A Fast Algorithm of AllSky Star Map Automated Identification [J]. , 2017, 43(4): 73-78.
[14]	WANG Fei, YUAN Jian-Ping, YUAN Jing. Formation Keeping and Reconfiguration for Solar Sail Spacecraft [J]. , 2017, 43(3): 7-14.
[15]	ZHOU Yu-Kui, YANG Hua, QIAO Lei. Formal Modeling and Verification Method of InterruptManagement Requirement and Design Based on EventB [J]. , 2017, 43(3): 71-78.

A Method of Analyzing and Localizing Software Vulnerability Automatically

PDF (PC)

Like

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Metrics

Comments

Recommended 0