Check patentability & draft patents in minutes with Patsnap Eureka AI!

Program bug detection system and method

A vulnerability and program technology, applied in the field of network security, can solve problems such as high false alarm rate and insufficient program vulnerability detection, and achieve the effects of reducing false alarm rate, improving vulnerability detection technology, and improving effectiveness and adaptability

Active Publication Date: 2013-03-20
NSFOCUS INFORMATION TECHNOLOGY CO LTD +1
View PDF3 Cites 7 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The embodiment of the present invention provides a program loophole detection system and method to solve the problem that the program loophole detection method provided by the prior art is not perfect enough to detect program loopholes and has a relatively high false positive rate

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Program bug detection system and method
  • Program bug detection system and method
  • Program bug detection system and method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0025] In order to solve the problem that the program loophole detection method provided by the prior art cannot detect unknown types of loopholes, the embodiment of the present invention provides a program loophole detection scheme, which uses a fuzzy state automaton detector to judge the execution flow of the program source code and Matching degree of fuzzy patterns corresponding to different vulnerability attack methods. Since the higher the matching degree, the more vulnerable the execution process of the program source code is to vulnerability attacks, so the security degree value representing the security degree of the program source code can be determined according to the matching degree. Furthermore, the fuzzy state automaton detector determines the vulnerability information of the program source code, and sends the determined vulnerability information to the vulnerability library, thereby realizing the improvement of the vulnerability library according to the detected ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a program bug detection system and method, which are used for solving the problems that the detection of a program bug by adopting a program bug detection manner provided by the prior art is not complete enough and is higher in false alarm rate. The program bug detection system comprises an execution path analog generator, a bug attribute association generator and a fuzzy state automata detector. The execution path analog generator is used for determining execution path information of a program source code and sending the execution path information to the fuzzy state automata detector; the bug attribute association generator is used for generating a frequency fuzzy mode set to be sent to the fuzzy state automata detector according to bug information stored in a set vulnerability database; and the fuzzy state automata detector is used for determining an execution flow of the program source code according to the execution path information, determining the matching degree between the execution flow and a fuzzy mode contained in the frequency fuzzy mode set and determining the safety degree of the program source code according to the matching degree.

Description

technical field [0001] The invention relates to the technical field of network security, in particular to a program loophole detection system and method. Background technique [0002] Generally, vulnerability detection can be divided into two categories: dynamic detection and static detection. [0003] Among them, dynamic detection refers to analyzing the operating environment of the program (such as environment variables, memory, heap and stack, etc.) to detect the difference between the result obtained after running the program and the expected result. Dynamic detection is generally used for black-box testing. Its advantage is that it does not need to modify the program source code or its binary code. Its disadvantage is that the detection of vulnerabilities is not perfect. For example, dynamic detection such as DEP can only detect the possible loopholes in the program that may cause the computer software system to suffer from stack attacks, but cannot detect the loophole...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/56
Inventor 孙建坡
Owner NSFOCUS INFORMATION TECHNOLOGY CO LTD
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com