Patch security detecting method and system for software update

A software update and security technology, used in computer security devices, platform integrity maintenance, instruments, etc., can solve problems such as false positive rate, high false negative rate, low efficiency, and dependence on the validity of test sets, and achieve false positives. The effect of low rate and false negative rate, avoiding path explosion, and high detection efficiency

Active Publication Date: 2016-07-20
HUAZHONG UNIV OF SCI & TECH
View PDF3 Cites 16 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] Aiming at the defects or improvement needs of the prior art, the present invention provides a software update security detection method and system, the purpose of which is to solve the false alarm rate and omissions existing in the existing security detection scheme for software update. High reporting rate, repetitive detection leads to low efficiency and over-reliance on the validity of the test set, providing an efficient and accurate security detection method for patches

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Patch security detecting method and system for software update
  • Patch security detecting method and system for software update
  • Patch security detecting method and system for software update

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0057] In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be further described in detail below in conjunction with the accompanying drawings and embodiments. It should be understood that the specific embodiments described here are only used to explain the present invention, not to limit the present invention.

[0058] The invention provides a software update safety detection method and system. The main idea of ​​the security detection method for software updates is: only detect the parts related to the patch code in the new version of the program, and the irrelevant parts can be considered safe because they have been tested before. Through the code analysis of the new version of the program, a data flow tree is constructed with the memory-sensitive function as the root node, thereby generating specific main execution paths, while ignoring some irrelevant branches, and finally symbolically executing these ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a patch security detecting method and system for software update.The method comprises the steps that by means of conducting preprocessing on patches, intermediate code analysis is conducted to obtain basic blocks affected by the patches, memory sensitive functions and variables thereof are obtained by means of the basic blocks affected by the patches, and a main execution path is constructed by starting from the memory sensitive functions; in the process of conducting symbolic execution on the path, the specific path condition is determined, and when the specific memory sensitive function is reached, the path condition at this time is combined with a corresponding security detector to judge whether a software update security problem exists or not.The patch security detecting method and system for the software update focus on detecting the security of different parts, relative to an older version, of the new version after software is updated, the problems that in an existing patch security detection scheme, the false positive rate and false negative rate are high, the efficiency is low due to duplicate detection, and overdependence on test set effectiveness exists are solved, the detection efficiency is significantly improved, and the accuracy of patch security detection is further improved.

Description

technical field [0001] The invention belongs to the safety field in software reliability research, and in particular relates to a software update patch safety detection method and system. Background technique [0002] Software update iterations are an important part of the software life cycle, and software patches are used to add or delete software functions, or to fix known bugs. However, not all patches are safe. Some patches fail to fix existing bugs or introduce new security issues, causing software crashes and even affecting the entire computer system. How to quickly and accurately detect and locate the possible security problems of the patch is of great significance to the security of the software and the stability of the entire system platform. [0003] Traditional software security testing schemes treat the entire software as a whole, and the main analysis techniques include static analysis, dynamic analysis and symbolic execution. Static analysis analyzes a progra...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/56
CPCG06F21/563G06F2221/033
Inventor 邹德清金海廖跃华
Owner HUAZHONG UNIV OF SCI & TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap