Skip to Main Content

IEEE.org| IEEE Xplore Digital Library| IEEE Standards| IEEE Spectrum| More Sites

Cart (Loading....) | Create Account | Sign In

Author Search^beta | Advanced Search | Preferences | | More Search Options

Browse Conference Publications > Software Engineering and Serv ...

A new framework for global object-oriented data-flow analysis

Full Text Sign-In or Purchase

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Username

Password

Purchase PDF
Other Formats

Formats	Non-Member	Member
PDF	$31	$13

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

Already Purchased? View Article
Subscription Options Learn More

4 Author(s)

Xu Xiong ; Key Lab. of network & Inf. attack &, Beijing Univ. of Posts & Telecommun., Beijing, China ; Xu Guo-ai ; Zhang Miao ; Zhuo Xin-jian

Conventional data-flow analysis technology has many disadvantages when applied to OOPL for the polymorphism, generic, and other special features. This paper analyzes these disadvantages, and based on which, a new dataflow analysis framework for OOPL is developed. It develops a unified abstract syntax tree (UAST) of all object-oriented programming languages. Key algorithms of global data-flow analysis for OOPL are studied. Various special OOPL features are considered. The experiment proves that, using this framework and its algorithm set, we can identify security vulnerabilities and their attack paths accurately and efficiently.

Published in:
Software Engineering and Service Sciences (ICSESS), 2010 IEEE International Conference on

Date of Conference: 16-18 July 2010

Page(s):: 487 - 490
Print ISBN:: 978-1-4244-6054-0
INSPEC Accession Number:: 11487705

Conference Location :: Beijing
Digital Object Identifier :: 10.1109/ICSESS.2010.5552324
Product Type:: Conference Publications

Author(s)

Xu Xiong
Key Lab. of network & Inf. attack &, Beijing Univ. of Posts & Telecommun., Beijing, China
Xu Guo-ai ; Zhang Miao ; Zhuo Xin-jian

INSPEC: CONTROLLED INDEXING

data flow analysis

object-oriented languages

object-oriented programming

tree data structures

INSPEC: NON CONTROLLED INDEXING

OOPL

UAST

global object-oriented data-flow analysis

object-oriented programming language

unified abstract syntax tree

AUTHOR KEYWORDS

OOPL

data-flow analysis

software security

static analysis

IEEE TERMS

Algorithm design and analysis

Doped fiber amplifiers

Java

Security

Software

Syntactics

Referenced Items are not available for this document.

No versions found for this document.

Standards Dictionary Terms are available to subscribers only.

| Create Account

IEEE Account

Purchase Details

Profile Information

Need Help?

US & Canada: +1 800 678 4333
Worldwide: +1 732 981 0060
Contact & Support

IEEE Advancing Technology for Humanity

About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies

A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2013 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.