多维度终端软件安装漏洞静态检测技术研究

Research on static detection technology of multi⁃dimensional terminal software installation vulnerability

为抵御静态漏洞对多维度终端软件造成的攻击,实现对软件安装环境的合理化维护,对多维度终端软件安装漏洞静态检测技术展开研究。利用漏洞检测模块,建立与路径静态调度相关的应用执行策略,再借助符号计算数据结构,确定多维度终端软件所处的实际安装环境。在此基础上,调用多维度检测语言,使其与漏洞字段完全匹配,按照建模处理的具体运算需求,计算静态检测的平均效率数值,实现对多维度终端软件安装漏洞静态检测技术的研究。对比实验结果表明,与常规漏洞检测手段相比,新型静态检测技术在单位时间内所能承载的漏洞总量更大,而PDR指标的表现水平相对更低,能够较好地抵御静态漏洞对多维度终端软件造成的攻击性伤害。

In order to resist the attack of static vulnerability on multidimensional terminal software and realize the reasonable maintenance of software installation environment,the static detection technology of multidimensional terminal software installation vulnerability is studied.The vulnerability detection module is used to establish the application execution strategy related to path static scheduling,and then the actual installation environment of multidimensional terminal software is determined with the help of symbolic computing data structure.On this basis,the multi⁃dimensional detection language is called to make it completely match the vulnerability field.According to the specific operational requirements of modeling processing,the average efficiency of static detection is calculated,and the research on static detection technology of multidimensional terminal software installation vulnerability is realized.The experimental results show that compared with the conventional vulnerability detection methods,the new static detection technology can carry more vulnerabilities per unit time,and the performance level of PDR index is relatively lower,which can better resist the attack damage caused by static vulnerabilities to multidimensional terminal software.