Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

A software data stream analysis method based on intermediate language and stain analysis

A data flow analysis, intermediate language technology, applied in electrical digital data processing, software testing/debugging, instrumentation, etc., can solve problems such as the inability to meet fine-grained and accurate software data flow analysis

Active Publication Date: 2019-02-12
NAT UNIV OF DEFENSE TECH
View PDF4 Cites 8 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Existing taint analysis methods cannot meet the needs of such fine-grained and accurate software data flow analysis

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A software data stream analysis method based on intermediate language and stain analysis
  • A software data stream analysis method based on intermediate language and stain analysis
  • A software data stream analysis method based on intermediate language and stain analysis

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0059] The present invention will be further described in detail below in conjunction with the accompanying drawings and specific embodiments.

[0060] Such as figure 1 Shown, a kind of software data flow analysis method based on intermediate language and taint analysis of the present invention, its step comprises:

[0061] Step S1: Define instruction format and expression format.

[0062] In order to describe the process of taint tracking based on intermediate language, the common instruction types of intermediate language are first described uniformly, and the formats of temporary variable expression, register expression and taint mark expression are constructed for data representation in the process of taint analysis.

[0063] Step S2: Build a taint propagation rule based on the intermediate language, and the taint mark is represented by taint_label;

[0064] Step S3: Dynamic tracking and analysis process of program data flow based on intermediate language;

[0065] Step...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a software data flow analysis method based on intermediate language and stain analysis. The method comprises the following steps of S1 defining instruction format and expression format; uniformly describing the general instruction types of the intermediate languages, and construting the temporary variable expressions, register expressions and stain marker expressions for the data representation in stain analysis process; S2 constructing a stain propagation rule based on an intermediate language, wherein the stain mark is represented by a taint_label; S3 dynamic tracking an analysis flow based on a program data flow of the intermediate language; S4 when the program is executed, constructing the data flow relationship between the stain source and the global variableTG, the local variable TL, and the system call function parameter TF based on the tracked stain information. The method of the invention has the advantages of better accuracy, stronger comprehensiveness and richer information.

Description

technical field [0001] The invention mainly relates to a data flow analysis method based on taint analysis, in particular to a software data flow analysis method based on intermediate language and taint analysis. Background technique [0002] Taint analysis technology is a key technology in malicious code detection, software supply chain security, and software vulnerability mining. Based on taint analysis, data flow analysis of software programs can be performed, and its main process includes taint marking of input data, taint propagation tracking, taint analysis, etc. In terms of specific applications, taint analysis technology mainly has the following types: First, it is applied to mark input data to find the dangerous use of tainted data through the method of taint tracking. This type is mainly used in software vulnerability mining and malicious code analysis; The second is to use the taint analysis method to construct the relationship between input data, key inspection ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F11/36G06F21/56
CPCG06F11/3604G06F21/56
Inventor 喻波杨强乐泰唐勇解炜周旭罗艳
Owner NAT UNIV OF DEFENSE TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products