A Practical J2EE Application Static Analysis Method Based Upon Taint Propagation

Hu Jian Jun; Wen Qiaoyan; Guo Dai Fei

doi:10.1051/matecconf/201712804005

MATEC Web of Conferences (Jan 2017)

A Practical J2EE Application Static Analysis Method Based Upon Taint Propagation

Hu Jian Jun,
Wen Qiaoyan,
Guo Dai Fei

Affiliations

Hu Jian Jun
Wen Qiaoyan
Guo Dai Fei

DOI: https://doi.org/10.1051/matecconf/201712804005
Journal volume & issue: Vol. 128
p. 04005

Abstract

Read online

Currently security audit/review for binaries is an upcoming method used to detect security vulnerabilities. In this paper we describe an efficient security audit method based on the java binaries. This method can The method in this invention can greatly reduce false positives and provides an efficient solution for automated secure auditing on binaries by only checking the exploitable security flows, especially for the scenarios which source codes are not available.

Published in MATEC Web of Conferences

ISSN: 2261-236X (Online)
Publisher: EDP Sciences
Country of publisher: France
LCC subjects: Technology: Engineering (General). Civil engineering (General)
Website: http://www.matec-conferences.org

About the journal