计算机应用研究2018,Vol.35Issue(2):497-502,6.DOI:10.3969/j.issn.1001-3695.2018.02.038
基于软件漏洞的克隆代码稳定性评估
Stability evaluation of clone codes based on software vulnerability
摘要
Abstract
In order to solve the problem of "loophole" tendency between clone code and non-clone code,this paper made a comparative analysis of different types of clones and non-clones based on "loopholes".First of all,it extracted the vulnerability of the software system code,used the clone detection tool to detect the software cloning code.Secondly,it extracted the clone and nonclone code which could produce "loophole",and calculated the BOC vulnerability density and LOC vulnerability density of different clone types and non-clones separately.Finally,this paper compared and analyzed the vulnerability of type-1,pure type-2,pure-type 3 clones and non-clones,and analyzed the results by Mann-Whitney test (WMM).The experimental results show that type-1 clones are more prone to "loopholes",and that the cloning of pure type-3 clones is less likely to introduced vulnerabilities.The study also found that clone and non-cloned code are in a higher frequency of "loopholes" set.This study adds to understanding of cloning features to help software designers and developers reduce the impact of code cloning on software.关键词
克隆代码/漏洞/软件漏洞/曼—惠特尼检验/层次聚类Key words
clone code/vulnerabilities/software vulnerabilities/Mann-Whitney test/hierarchical clustering分类
信息技术与安全科学引用本文复制引用
赵玉武,刘东升,翟晔..基于软件漏洞的克隆代码稳定性评估[J].计算机应用研究,2018,35(2):497-502,6.基金项目
国家自然科学基金资助项目(61363017,61462071) (61363017,61462071)
内蒙古自然科学基金资助项目(2015MS0606) (2015MS0606)
内蒙古自治区高等学校科学研究项目(NJZY16046) (NJZY16046)
