| 错误模式和程序切片的软件漏洞检测 |
| |
| 引用本文: | 林锦滨,蒋凡. 错误模式和程序切片的软件漏洞检测[J]. 信息安全与通信保密, 2009, 0(11): 68-70 |
| |
| 作者姓名: | 林锦滨 蒋凡 |
| |
| 作者单位: | 中国科学技术大学计算机科学技术学院,安徽,合肥,230027 |
| |
| 摘 要: | 提出了结合错误模式和切片技术的软件漏洞检测方法。错误模式库主要由软件的历史错误模式和一些常见的错误模式组成。然后将函数的入口参数作为前置条件,将建立好的错误模式作为后置条件,求得满足前置条件和后置条件的基于规约的切片,即可得到一条可能潜在漏洞的可疑路径。在得到这些可疑路径集合之后,使用符号执行和约束求解技术来进行可疑路径的验证,并自动产生可以触发该漏洞的测试例输入。该方法可以快速地进行漏洞可能产生的区域定位,并能自动产生触发漏洞的输入。
|
| 关 键 词: | 错误模式 程序切片 软件漏洞 符号执行 |
Detection of Software Vulnerability by Using Fault Pattern and Program Slicing |
| |
| LIN Jin-bin,JIANG Fan. Detection of Software Vulnerability by Using Fault Pattern and Program Slicing[J]. China Information Security, 2009, 0(11): 68-70 |
| |
| Authors: | LIN Jin-bin JIANG Fan |
| |
| Affiliation: | (School of Computer Science and Techn., University of Science and Technology of China, Hefei Anhui 230027, China) |
| |
| Abstract: | The method for detecting software vulnerability by using fault pattern and program slicing is proposed. The fault pattern database includes the historic fault patterns of software and some common fault patterns. Then the input parameters of function are defined as the pre-condition and the fault patterns as the post-condition. The program slicing based on specification, which matches the pre-condition and the post-condition, is computed, and then a doubtful path is gained, which may contains vulnerability. When a set of doubtful paths is obtained, the symbolic execution and constraint solver is used to certificate them and automatically generate the test case which would trigger the bug. This method could locate the area of vulnerability quickly, and automatically generate the input which would trigger the bug. |
| |
| Keywords: | fault pattern program slicing software bug symbolic execution |
| 本文献已被 维普 万方数据 等数据库收录! |
|
