A software patch detection method and device based on data flow analysis
A data flow analysis and detection method technology, applied in the computer field, can solve the problems of the efficiency and accuracy of the patch detection tool, the detection accuracy limitation, and the inability to meet the practical application, so as to improve the detection efficiency and accuracy, and eliminate the code syntax differences. , to achieve the effect of efficiency and precision
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Method used
Image
Examples
Embodiment 1
[0039] figure 1 It is a flowchart of the software patch detection method based on data flow analysis according to the embodiment of the present invention, such as figure 1 As shown, a software patch detection method based on data flow analysis includes:
[0040] Step 1: Use Extractor to parse the patch code, and sequentially select and detect the modification semantics of assignment statements and conditional statements, function call statements, type-related statements, and other types of statements in the patch code as features of the patch to be detected; build a binary The mapping relationship between code and source code;
[0041] Step 2: Select VEX-IR as the intermediate code of the binary code improvement of the platform of the device in the Internet of Things environment, use the open source Angr to analyze the binary code, and extract the control flow, wherein the control flow is in the unit of function, Each of said functions contains a node as a basic block;
[0...
Embodiment 2
[0069] like Figure 5 As shown, a software patch detection device based on data flow analysis includes:
[0070] The selection unit is used to analyze the patch code by using Extractor, select and detect the modification semantics of assignment statements and conditional statements, function call statements, type-related statements, and other types of statements in the patch code in sequence as the characteristics of the patch to be detected, and establish The mapping relationship between binary code and source code;
[0071] The analysis unit selects VEX-IR as the intermediate code for upgrading the binary code of the device firmware in the IoT environment, uses the Optimizer to analyze the binary code using the open source Angr, extracts the control flow, and analyzes the data flow in the basic block and the cross-basic code. block data flow for analysis;
[0072] The processing unit optimizes the extracted data stream; selects the ITL statement, the assignment statement a...
PUM
Abstract
Description
Claims
Application Information
- R&D Engineer
- R&D Manager
- IP Professional
- Industry Leading Data Capabilities
- Powerful AI technology
- Patent DNA Extraction
Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.
© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com