Test method and device, electronic equipment and readable storage medium

A testing method and a technology to be tested, which are applied in the field of computer security, can solve problems such as applicability defects, high false alarm rate, and high repair cost, and achieve the effect of improving test efficiency and accuracy and high false alarm rate

Pending Publication Date: 2020-07-17
INDUSTRIAL AND COMMERCIAL BANK OF CHINA
View PDF3 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] In the process of realizing the disclosed concept, the inventors found at least the following problems in the prior art: the white-box code scanning scheme needs to find code loopholes by analyzing the grammar and control flow of all source codes in software products. This method not only The source code of the software product under test is required, and the false positive rate is high, the applicability is flawed, and the problem repair cost is high

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Test method and device, electronic equipment and readable storage medium
  • Test method and device, electronic equipment and readable storage medium
  • Test method and device, electronic equipment and readable storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0027] Hereinafter, embodiments of the present disclosure will be described with reference to the drawings. It should be understood, however, that these descriptions are exemplary only, and are not intended to limit the scope of the present disclosure. In the following detailed description, for purposes of explanation, numerous specific details are set forth in order to provide a thorough understanding of the embodiments of the present disclosure. It may be evident, however, that one or more embodiments may be practiced without these specific details. Also, in the following description, descriptions of well-known structures and techniques are omitted to avoid unnecessarily obscuring the concept of the present disclosure.

[0028] The terminology used herein is for the purpose of describing particular embodiments only, and is not intended to be limiting of the present disclosure. The terms "comprising", "comprising", etc. used herein indicate the presence of stated features, ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to the field of security testing, and provides a testing method, which comprises the steps of inserting an analysis program into a to-be-tested program based on an instrumentation rule in response to an obtained testing instruction, so as to obtain running data generated in a running process of the to-be-tested program through the analysis program; based on the operation dataand a preset stain identification rule, determining stain data used in the operation process of the to-be-tested program; determining data transmission information of the taint data based on the operation data; and determining whether the to-be-tested program has security holes or not based on the data transmission information. The invention further provides a test device, electronic equipment and a computer readable storage medium. According to the method, the IDE plug-in is integrated in the development environment, and the instrumentation technology is used for dynamically tracking the stain data flow direction so as to determine whether the program has potential security vulnerabilities or not.

Description

technical field [0001] The present disclosure relates to the technical field of computer security, and more specifically, to a test method, a test device, electronic equipment and a readable storage medium. Background technique [0002] Application security testing is the process of inspecting software products to verify that the software products meet the definition of security requirements, and it is an important link in the entire life cycle of software products. Currently in the development stage, the mainstream automated application security testing solution commonly used in the industry is the white-box code scanning solution based on source code. [0003] In the process of realizing the disclosed concept, the inventors found at least the following problems in the prior art: the white-box code scanning scheme needs to find code loopholes by analyzing the grammar and control flow of all source codes in software products. This method not only The source code of the soft...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F11/36G06F21/57
CPCG06F11/3668G06F21/577
Inventor 周京叶红旷亚和高思尧
Owner INDUSTRIAL AND COMMERCIAL BANK OF CHINA
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap