Source code detecting system and method based on static analysis technology

A technology of static analysis and source code, applied in the field of source code detection, can solve problems such as inability to fully meet the needs of the organization itself, insufficient support, etc.

Active Publication Date: 2017-01-25
北京奇虎测腾安全技术有限公司 +1
View PDF5 Cites 28 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The current tools do not fully support this kind of individual needs, which makes it impossible for domestic users to fully meet the organization's own needs when applying source code security detection products.
Furthermore, there is no suggestion in the prior art to use any effective static analysis techniques when performing source code analysis

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Source code detecting system and method based on static analysis technology
  • Source code detecting system and method based on static analysis technology
  • Source code detecting system and method based on static analysis technology

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0059] Exemplary embodiments of the present invention will now be described with reference to the drawings; however, the present invention may be embodied in many different forms and are not limited to the embodiments described herein, which are provided for the purpose of exhaustively and completely disclosing the present invention. invention and fully convey the scope of the invention to those skilled in the art. The terms used in the exemplary embodiments shown in the drawings do not limit the present invention. In the figures, the same units / elements are given the same reference numerals.

[0060] Unless otherwise specified, the terms (including scientific and technical terms) used herein have the commonly understood meanings to those skilled in the art. In addition, it can be understood that the terms defined by commonly used dictionaries should be understood to have consistent meanings in the context of their related fields, and should not be understood as idealized or ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a source code detecting system and method based on the static analysis technology. The system comprises an interface unit, a source code security management unit, a defect knowledge base, an integrated compiler and a symbol execution detecting unit. The interface unit is used for receiving a to-be-detected source code and user identification. The source code security management unit recognizes the to-be-detected source code to determine the compiling language of the to-be-detected source code and the version of the compiler, obtains a preset customization rule according to the user identification and sends a detection request containing the preset customization rule to the defect knowledge base. The defect knowledge base is used for storing a plurality of rule bases and obtaining at least one detection rule from the rule bases according to the preset customization rule. The integrated compiler compiles the to-be-detected source code according to the compiling language of the to-be-detected source code and the version of the compiler to obtain compiling information. The symbol execution detecting unit conducts static analysis detection on the compiling information according to at least one detection rule to determine the detection result.

Description

technical field [0001] The present invention relates to the field of source code detection, and more specifically, to a source code detection system and method based on static analysis technology. Background technique [0002] With the rapid development of network technology and applications, information system security is facing unprecedented challenges. Networking and interoperability have become the development direction of current software and information systems. The interconnection of information systems with the Internet or other networks increases the probability of information systems being attacked, and also leads to an unprecedented increase in security threats to information systems. On the other hand, with the continuous enrichment of various business applications built on information systems, and the continuous improvement of the complexity of software and information systems, there are more and more hidden security risks in information systems, and it is usua...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F11/36
CPCG06F11/366
Inventor 章磊韩建
Owner 北京奇虎测腾安全技术有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap