Static code analysis with parse tree
The project focuses on developing a static code analyser which processes source code into relational graphs and analyse relationships between entities of the source code to discover potential vulnerabilities. By analysing patch files, the analyser can serve as an automated tool in assisting the disc...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Final Year Project |
| Language: | English |
| Published: |
2018
|
| Subjects: | |
| Online Access: | http://hdl.handle.net/10356/74021 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Nanyang Technological University |
| Language: | English |
| id |
sg-ntu-dr.10356-74021 |
|---|---|
| record_format |
dspace |
| spelling |
sg-ntu-dr.10356-740212023-03-03T20:41:40Z Static code analysis with parse tree Tham, Thomas Ting Hoi Liu Yang School of Computer Science and Engineering DRNTU::Engineering The project focuses on developing a static code analyser which processes source code into relational graphs and analyse relationships between entities of the source code to discover potential vulnerabilities. By analysing patch files, the analyser can serve as an automated tool in assisting the discovery of vulnerabilities. Because of changes in open-sourced libraries that are frequently integrated into enterprises’ software, the analyser can inform developers when their usages of the libraries might become broken due to the patches. In the future, machine learning can be integrated into the project, allowing the analyser to categorise threat levels accruing to certain parts of the source code that are affected by changes. This will allow developers to focus on their core products, rather than being slowed down by the miscellaneous task of tracking changes in the libraries they are using to ensure the security of their products. Bachelor of Engineering (Computer Science) 2018-04-23T08:32:52Z 2018-04-23T08:32:52Z 2018 Final Year Project (FYP) http://hdl.handle.net/10356/74021 en Nanyang Technological University 30 p. application/pdf |
| institution |
Nanyang Technological University |
| building |
NTU Library |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
NTU Library |
| collection |
DR-NTU |
| language |
English |
| topic |
DRNTU::Engineering |
| spellingShingle |
DRNTU::Engineering Tham, Thomas Ting Hoi Static code analysis with parse tree |
| description |
The project focuses on developing a static code analyser which processes source code into relational graphs and analyse relationships between entities of the source code to discover potential vulnerabilities. By analysing patch files, the analyser can serve as an automated tool in assisting the discovery of vulnerabilities. Because of changes in open-sourced libraries that are frequently integrated into enterprises’ software, the analyser can inform developers when their usages of the libraries might become broken due to the patches. In the future, machine learning can be integrated into the project, allowing the analyser to categorise threat levels accruing to certain parts of the source code that are affected by changes. This will allow developers to focus on their core products, rather than being slowed down by the miscellaneous task of tracking changes in the libraries they are using to ensure the security of their products. |
| author2 |
Liu Yang |
| author_facet |
Liu Yang Tham, Thomas Ting Hoi |
| format |
Final Year Project |
| author |
Tham, Thomas Ting Hoi |
| author_sort |
Tham, Thomas Ting Hoi |
| title |
Static code analysis with parse tree |
| title_short |
Static code analysis with parse tree |
| title_full |
Static code analysis with parse tree |
| title_fullStr |
Static code analysis with parse tree |
| title_full_unstemmed |
Static code analysis with parse tree |
| title_sort |
static code analysis with parse tree |
| publishDate |
2018 |
| url |
http://hdl.handle.net/10356/74021 |
| _version_ |
1759857795983736832 |