信息工程大学学报2024,Vol.25Issue(3):315-322,8.DOI:10.3969/j.issn.1671-0673.2024.03.010
基于行为模式的漏洞检测方法
Vulnerability Detection Technology Based on Behavior Pattern
摘要
Abstract
Existing vulnerability detection approaches based on symbolic execution still suffer from limitations such as a restricted range of detectable vulnerability types and imprecise characterization of the detected vulnerabilities.In this paper,we propose a generic vulnerability detection method based on behavioral patterns by analyzing in-depth the formation causes and behavioral patterns of common memory corruption vulnerabilities.This approach covers a wider range of vulnerability types and can automatically identify the type of the detected vulnerability.Furthermore,we design and implement an automated vulnerability detection framework and experimentally verify its effectiveness.Our study is of significance and value in improving network security capabilities.关键词
漏洞检测/符号执行/内存损坏漏洞Key words
vulnerability detection/symbol execution/memory corruption vulnerability分类
信息技术与安全科学引用本文复制引用
葛学帅,刘铁铭,谢耀滨,张有为..基于行为模式的漏洞检测方法[J].信息工程大学学报,2024,25(3):315-322,8.基金项目
河南省科技攻关项目(222102210260) (222102210260)
