| 基于相似特征的软件安全性缺陷检测算法 |
| |
| 引用本文: | 安喜锋.基于相似特征的软件安全性缺陷检测算法[J].西北工业大学学报,2009,27(6). |
| |
| 作者姓名: | 安喜锋 |
| |
| 作者单位: | 西北工业大学计算机学院,陕西西安,710072;中国人民银行西安分行,陕西西安,710075 |
| |
| 基金项目: | 国家863高技术研究发展计划 |
| |
| 摘 要: | 文章在全面分析软件系统安全性缺陷的基础上,提出一种基于相似特征的软件安全性缺陷检测算法.针对C语言源代码,应用实例推理CBR的技术原理,通过检测算法将源代码的安全特征与已知安全性缺陷的实例特征进行相似匹配,通过相似度计算来判定软件代码是否存在安全性缺陷.实验表明该算法有效地提高了缺陷检测的准确性和效率,解决了现有基于规则匹配的检测方法不能快速而准确地处理大型遗产软件和结构较为复杂的软件的问题.同时阈值的定义和选择也提高了检测算法的适应性和灵活性.
|
| 关 键 词: | 相似特征 安全性缺陷 实例推理 相似度 源代码分析 |
A Method for Detecting Software Security Vulnerability Based on Similar Characteristics |
| |
| An Xifeng.A Method for Detecting Software Security Vulnerability Based on Similar Characteristics[J].Journal of Northwestern Polytechnical University,2009,27(6). |
| |
| Authors: | An Xifeng |
| |
| Abstract: | Current detecting methods based on rule-matching cannot rapidly and accurately handle the large-scale legacy software and structure-complicated software.To solve these problems,a novel vulnerability detecting method based on similar characteristics is proposed in this paper.Through comprehensive analy8is of software security vulnerability,the method aims at C code security detection.Based on case-based reasoning technology,similarity matching is performed between security characteristics of source code and the characteristics of known security vulnerabilities;then the similarity is calculated and compared with a threshold to determine if the code has security vulnerabilities.The experiments demonstrate that the presented method can effectively improve the veracity and efficiency of vulnerability detection.In addition,the selection of threshold also improves the adaptability and agility of the detecting method. |
| |
| Keywords: | similar characteristic security vulnerability case-based reasoning similarity calculation code analysis |
| 本文献已被 万方数据 等数据库收录! |
|
