摘要
目前,在C语言软件潜在分析的过程中,往往忽略了对缺陷过程的管理,同时缺陷分析工作进展缓慢。针对上述问题,设计并开发了基于C语言的软件潜在分析工具,将C语言软件缺陷从发生源到造成事故的过程进行了分解,并采用静态分析方法查找源代码缺陷、故障模式和故障树方法分析可靠性缺陷、动态测试跟踪安全性缺陷。确定分析方法后,设计并实现了相应的工具。最后,通过实例对该工具进行了测试和验证,验证结果表明,该工具在缺陷的各个阶段均可对潜在缺陷进行有效的分析和管理,提高了软件潜在分析的效率,为安全关键软件的质量提供了保障。
In the process of C programming language software potential analysis,the management of the defect generatingprocess is often neglected,and the progress of the defect analysis work is slow. In order to solve the above problems,the soft?ware potential analysis tool based on C programming language was designed and developed. In the paper,the process from thegeneration source causing C programming language software defect to accident occurrence is decomposed,in which the staticanalysis method is used to find out the source code defect,the reliability defect is analyzed with failure modes and fault treemethod,and the security defect is tracked with dynamic test. The corresponding tool was designed and implemented after the de?termination of analysis method. The tool was tested and verified with an instance. The verification results show that the tool,ineach stage of the defect,can manage and analyze the potential defects effectively and improve the efficiency of the software po?tential analysis,and provides the guarantee for the quality of critical software safety.
作者
孙炼
SUN Lian(Jincheng College of Sichuan University,Chengdu 611731,China)
出处
《现代电子技术》
北大核心
2016年第15期81-85,共5页
Modern Electronics Technique
关键词
软件潜在分析
软件可靠性
软件安全性
故障树分析
调试器
software potential analysis
software reliability
software security
fault tree analysis
debugger
