Dynamic symbol execution path searching method for finding vulnerabilities

Dynamic symbol execution path searching method for finding vulnerabilities

The invention provides a dynamic symbol execution path searching method for finding vulnerabilities, relates to the field of software test, and aims at quickly triggering the vulnerabilities and improving the vulnerabilities detection efficiency of large software. The method is characterized in that...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: LI JINSHUAN, NIU WEINA, CHEN RUIDONG, BAI JIN, HUANG JIN, ZHANG XIAOSONG, WANG DONG, XU HAORAN, LAI TE, YU ZHOU
Format: Patent
Sprache:chi ; eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention provides a dynamic symbol execution path searching method for finding vulnerabilities, relates to the field of software test, and aims at quickly triggering the vulnerabilities and improving the vulnerabilities detection efficiency of large software. The method is characterized in that a path of the vulnerabilities that are triggered during actually executing a program under test is marked while searching a possible execution path of the program under test through a dynamic symbol; as every new use case under test is generated during exploiting the path, the relevancy gamma between the execution path of the use case under test and the previous vulnerabilities-triggered path is calculated, accordingly, the weight fraction score of the execution path corresponding to the use test under test is calculated, and thus the next test can be executed based on the use case with the maximum score value under test.