%0 Journal Article
%T Lexical analysis in source code analysis<br>源码审核技术中的词法分析
%A XIAO Feng
%A ZHANG Yu-Qing
%A <br>肖锋
%A 张玉清
%J 中国科学院研究生院学报
%D 2009
%I 
%X Source code analysis means detecting and correcting the security vulnerabilities of these software in time during the coding stage, and lexical analysis is one of the important techniques in it. In this paper, we manage to detailedly analyze the implement process of lexical analysis, improve dangerous function database, optimize the method of features analysis,and particularly introduce Bayesian theory to the lexical analysis. In addition, a lexical analysis tool SSCAN is designed and implemented successfully, which is proved to have higher integrity and accuracy than mainstream open-source lexical analysis software Flawfinder and Rats by several tests.
%K source code analysis
%K lexical analysis
%K features analysis
%K Bayesian theory<br>源代码审核
%K 词法分析
%K 特征分析
%K 贝叶斯决策
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=B5EDD921F3D863E289B22F36E70174A7007B5F5E43D63598017D41BB67247657&cid=B47B31F6349F979B&jid=67CDFDECD959936E166E0F72DE972847&aid=8922681A4D8973D2650D32776C353221&yid=DE12191FBD62783C&vid=96C778EE049EE47D&iid=38B194292C032A66&sid=A53D7AA35F9929AF&eid=3081401A9FAB9CE2&journal_id=1002-1175&journal_name=中国科学院研究生院学报&referenced_num=0&reference_num=5