Inferring Patterns for Taint-Style Vulnerabilities With Security Patches

Inferring Patterns for Taint-Style Vulnerabilities With Security Patches

Taint-style vulnerabilities can damage the service provided by mobile seriously. The pattern-based method is a practical way to detect taint-style vulnerabilities. Most of the methods extract the vulnerability patterns from the code base, however, sometimes missing the vulnerability patterns and res...

Full description

Bibliographic Details
Main Authors:	Tingyu Song, Xiaohong Li, Zhiyong Feng, Guangquan Xu
Format:	Article
Language:	English
Published:	IEEE 2019-01-01
Series:	IEEE Access
Subjects:	Code change static analysis vulnerability detection
Online Access:	https://ieeexplore.ieee.org/document/8697101/

Similar Items

Operation System Vulnerabilities Analysis Based on Code Clone Detection
by: WANG Zhe, REN Yi, ZHOU Kai, GUAN Jianbo, TAN Yusong
Published: (2021-09-01)

Vulnerability Analysis of Vagrant Boxes
by: Holmqvist, Andreas, et al.
Published: (2017)

Automated Software Vulnerability Detection Based on Hybrid Neural Network
by: Xin Li, et al.
Published: (2021-04-01)

Finding and remedying high-level security issues in binary code
by: Dewey, David Bryan
Published: (2016)

Vulnerability Detection on Android Apps–Inspired by Case Study on Vulnerability Related With Web Functions
by: Jiawei Qin, et al.
Published: (2020-01-01)

Utilizing type systems for static vulnerability analysis
by: Lavrentii Tsvetkov, et al.
Published: (2016-04-01)

NPDHunter: Efficient Null Pointer Dereference Vulnerability Detection in Binary
by: Wenhui Jin, et al.
Published: (2021-01-01)

A Survey of Security Vulnerability Analysis, Discovery, Detection, and Mitigation on IoT Devices
by: Miao Yu, et al.
Published: (2020-02-01)

A Comparative Study of Deep Learning-Based Vulnerability Detection System
by: Zhen Li, et al.
Published: (2019-01-01)

AndroShield: Automated Android Applications Vulnerability Detection, a Hybrid Static and Dynamic Analysis Approach
by: Amr Amin, et al.
Published: (2019-10-01)

Supporting secure programming in web applications through interactive static analysis
by: Jun Zhu, et al.
Published: (2014-07-01)

Towards the application of recommender systems to secure coding
by: Fitzroy D. Nembhard, et al.
Published: (2019-06-01)

A WEB-APPLICATION QUALITY EVALUATION METHOD BASED ON VULNERABILITY DETECTION
by: D. E. Onoshko, et al.
Published: (2018-05-01)

A Survey of Software Clone Detection From Security Perspective
by: Haibo Zhang, et al.
Published: (2021-01-01)

Detecting Information Leakage in Android Malware Using Static Taint Analysis
by: Kelkar, Soham P.
Published: (2017)

IoT Application-Layer Protocol Vulnerability Detection using Reverse Engineering
by: Jian-Zhen Luo, et al.
Published: (2018-11-01)

Comparative analysis of two approaches to the static taint analysis
by: M. V. Belyaev, et al.
Published: (2018-10-01)

Requirements of a Better Secure Program Coding
by: Marius POPA
Published: (2012-01-01)

Staged Method of Code Similarity Analysis for Firmware Vulnerability Detection
by: Yisen Wang, et al.
Published: (2019-01-01)

Using the SEI CERT Secure Coding Standard to Reduce Vulnerabilities
by: Fisch, Johan, et al.
Published: (2021)

Efficient Feature Selection for Static Analysis Vulnerability Prediction
by: Katarzyna Filus, et al.
Published: (2021-02-01)

An Optimized Static Propositional Function Model to Detect Software Vulnerability
by: Lansheng Han, et al.
Published: (2019-01-01)

Targeted Attacks Using Vulnerability CVE-2013-3897
by: Anatoliy Petrovich Durakovskiy, et al.
Published: (2014-09-01)

THE EXPERIENCE OF COMPARISON OF STATIC SECURITY CODE ANALYZERS
by: Alexey Markov, et al.
Published: (2015-09-01)

MULTI_LEVEL SECURE FROM WEB INTRUSION AND QUERY ATTACKS ON WEB DATABASE
by: Nirmala Kumari R, et al.
Published: (2017-12-01)

A Survey of Exploitation and Detection Methods of XSS Vulnerabilities
by: Miao Liu, et al.
Published: (2019-01-01)

Identify Vulnerability Fix Commits Automatically Using Hierarchical Attention Network
by: Mingxin Sun, et al.
Published: (2020-06-01)

A Lightweight Assisted Vulnerability Discovery Method Using Deep Neural Networks
by: Runhao Li, et al.
Published: (2019-01-01)

Validation of Machine Learning and Visualization based Static Code Analysis Technique
by: Mahmood, Waqas, et al.
Published: (2009)

Detecting Areas Vulnerable to Sand Encroachment Using Remote Sensing and GIS Techniques in Nouakchott, Mauritania
by: Diego Gómez, et al.
Published: (2018-09-01)

Design of Vulnerability Ontologies and Application of Logical Inference for Security Information and Events Menegement
by: Olga Vitalievna Polubelova, et al.
Published: (2013-02-01)

The Presence, Trends, and Causes of Security Vulnerabilities in Operating Systems of IoT’s Low-End Devices
by: Abdullah Al-Boghdady, et al.
Published: (2021-03-01)

Patch-Related Vulnerability Detection Based on Symbolic Execution
by: Weizhong Qiang, et al.
Published: (2017-01-01)

A Framework for Software Security Testing and Evaluation
by: Dutta, Rahul Kumar
Published: (2015)

Detecting PHP-based Cross-Site Scripting Vulnerabilities Using Static Program Analysis
by: Kelbley, Steven M.
Published: (2016)

Climate security and a vulnerability model for conflict prevention: a systematic literature review focusing on African agriculture
by: Daniel Pearson, et al.
Published: (2019-02-01)

Software Vulnerability Analysis and Discovery Using Deep Learning Techniques: A Survey
by: Peng Zeng, et al.
Published: (2020-01-01)

PSOFuzzer: A Target-Oriented Software Vulnerability Detection Technology Based on Particle Swarm Optimization
by: Chen Chen, et al.
Published: (2021-01-01)

Integrating Automated Security Testing in the Agile Development Process : Earlier Vulnerability Detection in an Environment with High Security Demands
by: Broström, Andreas
Published: (2015)

Fatal injection: a survey of modern code injection attack countermeasures
by: Dimitris Mitropoulos, et al.
Published: (2017-11-01)