• DocumentCode
    3388761
  • Title

    An efficient code audit method for accurately detecting security vulnerabilities in source codes

  • Author

    Hu, Jian Jun ; Wen, Qiaoyan ; Sui, Ai Fen

  • Author_Institution
    State Key Lab. of Networking & Switching Technol., Beijing Univ. of Posts & Telecommun., Beijing, China
  • fYear
    2011
  • fDate
    25-28 Sept. 2011
  • Firstpage
    698
  • Lastpage
    702
  • Abstract
    Currently code security audit/review or white-box security test is widely used to analyze the source codes and detect security vulnerabilities. In this paper we describe a more efficient code security audit method based on the reference tree with security properties which building on all manipulable entries in source codes. This method can The method in this invention can greatly reduce false positives and provides an efficient solution for automated secure auditing on source codes by only checking the exploitable security flows.
  • Keywords
    auditing; source coding; accurately detecting security vulnerabilities; code security; efficient code audit method; reference tree; security properties; source codes; white-box security test; Boolean functions; Data structures;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Communication Technology (ICCT), 2011 IEEE 13th International Conference on
  • Conference_Location
    Jinan
  • Print_ISBN
    978-1-61284-306-3
  • Type

    conf

  • DOI
    10.1109/ICCT.2011.6157966
  • Filename
    6157966
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3388761