期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

防范入侵的静态分析技术比较 被引量:2

A Comparison of Static Analysis Technology for Intrusion Prevention
下载PDF
导出
摘要 建立了一个具有常见漏洞的测试代码,然后通过扫描测试代码来比较3个典型应用静态分析技术来防范入侵的常用工具。比较结果揭示了检查漏洞库函数的工具漏报率较低,但误报率较高;基于约束分析的工具误报率较低,但漏报率较高;利用软件模型来检测漏洞的工具在检测违背指定安全规则的漏洞时漏报率较低,但在检测具有许多安全漏洞类型的程序时漏报率却非常低。 A testbed which includes the common vulnerabilities is built. The paper compares three typical and publicly available tools by applying them to the testbed individually for sake of preventing intrusion. The result reveals that the tools building on finding vulnerable library functions have low false negatives rates but high false positives rates, the constrained based tools have low false positives rates but high false negatives rates, and the module checkers have high true positives rates when finding attacks against given security rules, but have high false negatives rates when finding many kinds of vulnerabilities.
作者 吴春梅 夏耐 茅兵
机构地区 南京大学软件新技术国家重点实验室
出处 《计算机工程》 CAS CSCD 北大核心 2006年第3期174-176,253,共4页 Computer Engineering
基金 国家"863"计划基金资助项目(2003AA144010)
关键词 防范入侵 静态分析 缓冲区溢出 格式化串溢出 竞争条件 Intrusion prevention Static analysis Buffer overflow Format string bugs Race condition
分类号 TP393 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献7

  • 1CERT Coordination Center.CERT/CC Statistics 1988-2003[EB/OL].《http://www.cert.org/stats/cert_stats.html》,2004
  • 2Wilander J,Kamkar M.A Comparison of Publicly Available Tools for Dynamic Buffer Overflow Prevention[EB/OL].《http://www.ida.liu》.se/~johwi/research_publications/paper_ndss2003_john_wilander.pdf,2003.
  • 3Hatch B,Lee J,Kurtz G.Hacking Linux Exposed:Linux Security Secrets & Solutions[M].The McGraw-Hill Companies,2002.
  • 4Viega J,Bloch J T,Kohno T,et al.ITS4:A Static Vulnerability Scanner for C and C++ Code[C].Proceedings of the 16th Annual Computer Security Applications Conference,2000.
  • 5Larochelle D,Evans D.Statically Detecting Likely Buffer Overflow Vulnerabilities[C].Proceedings of the 2001 USENIX Security Symposium,Washington DC,USA,2001.
  • 6Chen Hao,Wagner D.MOPS:An Infrastructure for Examining Security Properties of Software[C].Proceedings of the 9th ACM Conference on Computer and Communications Security,Washington,DC,USA,2002:235-244.
  • 7Wilander J,Kamkar M.A Comparison of Publicly Available Tools for Static Intrusion Prevention[C].7th Nordic Workshop on Secure IT Systems,Karlstad,Sweden,2002.

同被引文献6

引证文献2

二级引证文献14

计算机工程
2006年 第3期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部