A Static Comprehensive Analytical Method for Buffer Overflow Vulnerability Detection
A Static Comprehensive Analytical Method for Buffer Overflow Vulnerability Detection
Buffer overflow vulnerability is a widespread and dangerous security problem. Detecting buffer overflow vulnerability has great research value in information security area. This paper proposes a static comprehensive analytical method for buffer overflow vulnerability detection. Firstly, this method adopts many kinds of static detection tools for detecting the source codes and producing their own detecting reports. Secondly, comprehensive analysis is implemented to evaluate the reliability w eights of detecting tools by training process with detection results, and further optimize the detection results. This training process can improve the efficiency of discovering buffer overflow vulnerabilities with lower rate of omissions and misstatements. The experimental results show that compared with single static detection methods, the rates of both false alert and missed alert decrease significantly.
selected citations These citations are derived from selected sources.This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).0 popularity This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.Average influence This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).Average impulse This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.Average
Citations provided by BIP!Popularity provided by BIP!