| 基于模型检验的软件安全静态分析研究 |
| |
| 引用本文: | 黄锦,陈晓苏,肖道举,刘辉宇.基于模型检验的软件安全静态分析研究[J].微计算机信息,2007,23(30):86-87,49. |
| |
| 作者姓名: | 黄锦 陈晓苏 肖道举 刘辉宇 |
| |
| 作者单位: | 华中科技大学计算机学院,湖北,430074 |
| |
| 基金项目: | 国家高技术研究发展计划(863计划) |
| |
| 摘 要: | 软件安全静态分析是检测软件安全漏洞的一种手段。本文在总结现有的软件安全静态分析方法的基础上,将在硬件设计领域得到成功应用的模型检验方法引入到软件产品的检验中,给出了一种基于自动机理论的检测软件安全的模型检验方法,阐述了其原理和工作流程,并用实例进行了验证说明。
|
| 关 键 词: | 静态分析 模型检验 漏洞挖掘 软件安全 |
| 文章编号: | 1008-0570(2007)10-3-0086-02 |
| 修稿时间: | 2007-07-032007-09-05 |
Research On Model Checking Based Software Security Static Analysis |
| |
| HUANG JIN,CHEN XIAOSU,XIAO DAOJU,LIU HUIYU.Research On Model Checking Based Software Security Static Analysis[J].Control & Automation,2007,23(30):86-87,49. |
| |
| Authors: | HUANG JIN CHEN XIAOSU XIAO DAOJU LIU HUIYU |
| |
| Abstract: | Software security static analysis is an important way of software vulnerability checking. This paper summarizes the current static analysis methods and then imports the model checking method which has been successfully used in hardware design. Describes an automata theory based model checking method for software vulnerability checking. Then explains its principles and working flow, and at last validates it by using example. |
| |
| Keywords: | static analysis model checking vulnerability dig software security |
| 本文献已被 维普 万方数据 等数据库收录! |
|
