Security Vulnerability Detection Study Based on Static Analysis
基于静态分析的安全漏洞检测技术研究

Security vulnerability of software is a serious threat for information security. Static analysis can find security vulnerabilities by automatically deriving information about the behavior of software. Comparing with other program analysis methods, static analysis method can detect security vulnerabilities automatically and effectively. This paper presents the theory basis and principles of static analysis methods, and introduces their applications and characters in security vulnerabilities detection. At last, we show some security languages which can support detection of security vulnerability.