Unlock instant, AI-driven research and patent intelligence for your innovation.

A vulnerability detection method based on function-level code similarity

A vulnerability detection and similarity technology, applied in digital data processing, platform integrity maintenance, instruments, etc., can solve problems such as high computing costs, inability to distinguish between vulnerable code and patched code, and loss of vulnerability semantic information. To achieve the effect of guaranteed performance

Active Publication Date: 2022-07-26
SICHUAN UNIV
View PDF3 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The complex intermediate representation method helps to improve the detection accuracy, but it will also lead to higher computing costs; while the higher code abstract representation method will improve efficiency, but it will also lose part of the vulnerability semantic information, making it impossible to distinguish the vulnerable code from the existing one. patched code

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A vulnerability detection method based on function-level code similarity
  • A vulnerability detection method based on function-level code similarity
  • A vulnerability detection method based on function-level code similarity

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0039] The present invention will be further described below with reference to the accompanying drawings and embodiments.

[0040] figure 1 This is the overall system flow chart of the present invention.

[0041] The vulnerability function fingerprint library building module collects commit files and corresponding patch files of all CVE vulnerabilities from Github's CVE project library to build a vulnerability database, generates vulnerability function fingerprints based on the differences between CTPH algorithm and code, and establishes vulnerability function fingerprint database.

[0042] The fingerprint generation module of the objective function generates the fingerprint of the objective function based on the CTPH algorithm.

[0043] Vulnerability detection based on functional fingerprints includes two steps of matching: fuzzy matching and exact matching. Vulnerabilities can be successfully detected after both steps are successful.

[0044] figure 2 for figure 1 The f...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a vulnerability detection method based on function-level code similarity, which belongs to the technical field of computer network security. Preprocessing; then use the vulnerability function body and the add-line code and delete-line code in the corresponding patch file to generate the vulnerability function fingerprint and the function fingerprint to be detected; finally, based on the fuzzy matching based on the Wagner Fischer algorithm and the multimodality based on the Aho-Corasick algorithm Exact matching to realize vulnerability detection of function fingerprints. The present invention avoids the generation of complex intermediate representations, and at the same time retains the basic grammatical structure, thereby ensuring the performance of the detection model, especially the detection accuracy is not affected by grammatically meaningless modifications. While ensuring a low false positive rate and false negative rate, the scalability of vulnerability detection is improved.

Description

technical field [0001] The invention relates to the field of computer network security, in particular to a vulnerability detection method based on function-level code similarity. The invention avoids the generation of complex intermediate representations, while retaining the basic grammatical structure, ensuring the performance of the detection model, especially the detection accuracy is not affected by grammatically meaningless modifications, can perform 1-3 types of clone detection, and automatically Distinguish vulnerable code from patched code. While ensuring a low false positive rate and false negative rate, the scalability of vulnerability detection is improved. Background technique [0002] The number of Open-source software ("OSS") programs has grown rapidly over the past few years. The significant increase in the number of OSS programs naturally leads to an increase in software vulnerabilities due to code cloning, which poses a serious threat to the security of so...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/57
CPCG06F21/577G06F2221/033
Inventor 黄诚赵倩崇郭勇延
Owner SICHUAN UNIV