DocumentCode :
3388761
Title :
An efficient code audit method for accurately detecting security vulnerabilities in source codes
Author :
Hu, Jian Jun ; Wen, Qiaoyan ; Sui, Ai Fen
Author_Institution :
State Key Lab. of Networking & Switching Technol., Beijing Univ. of Posts & Telecommun., Beijing, China
fYear :
2011
fDate :
25-28 Sept. 2011
Firstpage :
698
Lastpage :
702
Abstract :
Currently code security audit/review or white-box security test is widely used to analyze the source codes and detect security vulnerabilities. In this paper we describe a more efficient code security audit method based on the reference tree with security properties which building on all manipulable entries in source codes. This method can The method in this invention can greatly reduce false positives and provides an efficient solution for automated secure auditing on source codes by only checking the exploitable security flows.
Keywords :
auditing; source coding; accurately detecting security vulnerabilities; code security; efficient code audit method; reference tree; security properties; source codes; white-box security test; Boolean functions; Data structures;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Communication Technology (ICCT), 2011 IEEE 13th International Conference on
Conference_Location :
Jinan
Print_ISBN :
978-1-61284-306-3
Type :
conf
DOI :
10.1109/ICCT.2011.6157966
Filename :
6157966
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3388761
بازگشت