DocumentCode :
3350534
Title :
Checking Java Bugs by Data Propagation Analysis
Author :
Zhang LuFeng ; Hong, Tang ; Huang Min Huan ; Kuang Xiao Hui ; Qi, Jin
Author_Institution :
Sci. & Technol. on Inf. Syst. Security Lab., Beijing, China
fYear :
2011
fDate :
21-23 Oct. 2011
Firstpage :
861
Lastpage :
864
Abstract :
The objective of vulnerability analysis is to find out the unknown security holes in a system. Many software bugs, such as SQL injection, come from careless check of the input string. Finding these bugs out is very difficult without source code inspect. This paper gives a novel method to check the bugs in Java byte code based on points-to dataflow analysis, which is different to the common analysis techniques base on the vulnerability pattern check. It can be used as an assistant approach for security analysis of Java byte code.
Keywords :
Java; data analysis; security of data; Java bugs checking; Java byte code; SQL injection; Structured Query Languages; data propagation analysis; points-to dataflow analysis; security analysis; security hole; software bug; source code inspection; vulnerability analysis; vulnerability pattern check; Analytical models; Computer bugs; Databases; Focusing; Java; Security; Software; Java bytecode; points-to dataflow; vulnerability analysis;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Instrumentation, Measurement, Computer, Communication and Control, 2011 First International Conference on
Conference_Location :
Beijing
Print_ISBN :
978-0-7695-4519-6
Type :
conf
DOI :
10.1109/IMCCC.2011.217
Filename :
6154243
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3350534
بازگشت