Source code vulnerability positioning method, system and device based on neural network and medium

Source code vulnerability positioning method, system and device based on neural network and medium

The invention discloses a source code vulnerability positioning method, system and device based on a neural network, and a medium. The method comprises the following steps: generating a program source code path directed graph based on a source code graph structure and control flow information; based...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: HAN JIAJIA, LIU HENGWANG, JIN XIN, SUN XIN, WEI SHUANGMEI
Format: Patent
Sprache:chi ; eng
Schlagworte:
CALCULATING
COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention discloses a source code vulnerability positioning method, system and device based on a neural network, and a medium. The method comprises the following steps: generating a program source code path directed graph based on a source code graph structure and control flow information; based on the source code vulnerability analysis model, analyzing the threat degree of the vulnerability in the source code, and obtaining a target vulnerability, the target vulnerability characterizing the vulnerability whose threat degree accords with a preset condition; under the condition of determining that the target vulnerability exists in the source code, obtaining a path sub-graph corresponding to the target vulnerability based on a target vulnerability key point distribution region in the source code path directed graph; and searching and positioning the target vulnerability based on the path sub-graph. According to the method, firstly, the vulnerability threat degree in the source code is predicted based on th