Currently code review or white-box security detecting is widely used to parse the source codes and discover security vulnerabilities. In this paper we illustrate a more accurate code security review method based on the reference tree with security properties which made of all manipulable entries in source codes. This method in this paper can greatly reduce false positives and provides a better solution for automated secure reviewing on source codes by only checking the exploitable security flaws.
展开▼
