| 发明名称 |
RULE DESCRIPTION LANGUAGE FOR SOFTWARE VULNERABILITY DETECTION |
| 摘要 |
According to an embodiment of the present invention, a method for detecting a security weakness of a software comprises the steps of: parsing a source code of a target software; generating a flow graph including a data flow and a control flow after parsing the source code; writing and storing a pattern of a security weakness with an independent rule description language by generating the flow graph; and searching the flow graph based on a preset standard to detect the security weakness by analyzing the pattern of the security weakness in the specification written by the rule description language. |
| 申请公布号 |
KR101645019(B1) |
申请公布日期 |
2016.08.02 |
| 申请号 |
KR20160005647 |
申请日期 |
2016.01.15 |
| 申请人 |
GTONE CO., LTD. |
发明人 |
HONG, SUNG MOON;KIM, HYUN HA;JUNG, SEUNG CHEOL;DOH, KYUNG GOO;CHOI, TAE HYOUNG |
| 分类号 |
G06F21/14;G06F9/45;G06F21/50;G06F21/57 |
主分类号 |
G06F21/14 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
|
| 地址 |
|
