静态代码缺陷定位技术研究

Research on Static Code Defect Location Technology

随着计算机技术的飞速发展,软件安全缺陷也日益严重,软件测试也变得越来越重要。静态测试属于软件测试范畴,笔者对静态代码缺陷定位进行研究,并对几种静态代码静态分析工具进行了测试流程指导及实验分析,同时提出了一种综合的静态代码缺陷定位技术改进方案并进行了实验对比分析,证明能够降低测试的误报率和漏报率。

With the rapid development of computer technology,software security defects are becoming more and more serious,and software testing is becoming more and more important.Static testing belongs to the category of software testing.In this paper,the static code defect localization is studied,and several static code static analysis tools are tested and the experimental analysis is conducted.At the same time,a comprehensive improvement scheme of static code defect location technology is proposed,and the experimental comparison analysis shows that it can reduce the false positive rate and missing report rate of the test.