首页>
外国专利>
HIGH PERFORMANCE SOFTWARE VULNERABILITIES DETECTION SYSTEM AND METHODS
HIGH PERFORMANCE SOFTWARE VULNERABILITIES DETECTION SYSTEM AND METHODS
展开▼
机译:高性能软件漏洞检测系统和方法
展开▼
页面导航
摘要
著录项
相似文献
摘要
This invention teaches a system and methods of detecting software vulnerabilities in a computer program by analyzing the compiled code and optionally the source code of the computer program. The invention models compiled software to examine both control flow and data flow properties of the target program. A comprehensive instruction model is used for each instruction of the compiled code, and is complemented by a control flow graph that includes all potential control flow paths of the instruction. A data flow model is used to record the flow of unsafe data during the execution of the program. The system analyzes the data flow model and creates a security finding corresponding to each instruction that calls an unsafe function on unsafe data. The security findings are aggregated in a security report. To improve performance, the system further uses data flow merging, and caching of 1-to-many data flow maps for each basic block in the code.
展开▼