Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

A software data flow analysis method based on intermediate language and taint analysis

A data flow analysis and intermediate language technology, which is applied in electrical digital data processing, software testing/debugging, instrumentation, etc. The effect of standardizing and unifying and enriching the expression ability

Active Publication Date: 2021-06-25
NAT UNIV OF DEFENSE TECH
View PDF4 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Existing taint analysis methods cannot meet the needs of such fine-grained and accurate software data flow analysis

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A software data flow analysis method based on intermediate language and taint analysis
  • A software data flow analysis method based on intermediate language and taint analysis
  • A software data flow analysis method based on intermediate language and taint analysis

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0059] The present invention will be further described in detail below in conjunction with the accompanying drawings and specific embodiments.

[0060] Such as figure 1 Shown, a kind of software data flow analysis method based on intermediate language and taint analysis of the present invention, its step comprises:

[0061] Step S1: Define instruction format and expression format.

[0062] In order to describe the process of taint tracking based on intermediate language, the common instruction types of intermediate language are first described uniformly, and the formats of temporary variable expression, register expression and taint mark expression are constructed for data representation in the process of taint analysis.

[0063] Step S2: Build a taint propagation rule based on the intermediate language, and the taint mark is represented by taint_label;

[0064] Step S3: Dynamic tracking and analysis process of program data flow based on intermediate language;

[0065] Step...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a software data flow analysis method based on intermediate language and taint analysis. The steps include: step S1: defining instruction format and expression format; uniformly describing general instruction types in intermediate language, constructing temporary variable expressions, Register expressions and taint label expressions are used for data representation in the process of taint analysis; Step S2: Build a taint propagation rule based on intermediate language, and the taint mark is represented by taint_label; Step S3: Dynamic tracking analysis of program data flow based on intermediate language Process; Step S4: During the execution of the program, construct the taint source and the global variable T through the taint information based on the trace G , the local variable T L , system call function parameter T F data flow relationship between them. The invention has the advantages of better accuracy, stronger comprehensiveness, richer information and the like.

Description

technical field [0001] The invention mainly relates to a data flow analysis method based on taint analysis, in particular to a software data flow analysis method based on intermediate language and taint analysis. Background technique [0002] Taint analysis technology is a key technology in malicious code detection, software supply chain security, and software vulnerability mining. Based on taint analysis, data flow analysis of software programs can be performed, and its main process includes taint marking of input data, taint propagation tracking, taint analysis, etc. In terms of specific applications, taint analysis technology mainly has the following types: First, it is applied to mark input data to find the dangerous use of tainted data through the method of taint tracking. This type is mainly used in software vulnerability mining and malicious code analysis; The second is to use the taint analysis method to construct the relationship between input data, key inspection ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): G06F11/36G06F21/56
CPCG06F11/3604G06F21/56
Inventor 喻波杨强乐泰唐勇解炜周旭罗艳
Owner NAT UNIV OF DEFENSE TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products