摘要
提出了一种软件安全漏洞的检测方法,重点介绍了静态测试。对当前基于源码分析的软件安全测试工具进行了分类并加以分析。
Put forward the detection method of security vulnerabilities, putting emphasis on static testing. Lastly, some software security testing tools based on source-code analysis are introduced and classified into several categories.
基金
国家863计划(2007AA010302)
关键词
软件安全
漏洞
安全测试
静态分析
测试工具
software security
vulnerability
security testing
static analysis
testing tools