Modeling a Program with Vulnerabilities in the Terms of Its Representations Evolution. Part 1. Life Cycle Scheme

Izrailov, Konstantin

doi:10.31854/1813-324x-2023-9-1-75-93

Cited by 3 publications

(1 citation statement)

References 14 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Часть важнейших и используемых далее результатов была получена в предыдущей части данного цикла статей [4]. Ранее автором были обоснованы и введены представления (далее -Представление), через которые проходит любая программа, а именно, следующие (с их краткой сутью):…”

Section: Introductionunclassified

Modeling a Program with Vulnerabilities in the Terms of Its Representations Evolution. Part 2. Analytical Model and Experiment

Izrailov

2023

jour

Self Cite

View full text Add to dashboard Cite

The investigation results of the creating programs process and the resulting vulnerabilities are presented. In the second part of the articles series, a program life cycle generalized analytical model of the based on its representations is proposed, taking into account the direct and reverse transformation methods. Also, the model reflects the occurrence and detection of vulnerabilities and their classification. A particularly model is synthesized from it, reflecting the current state of the program representations evolution, and on the basis of which a number of fundamental statements were derived, written in an analytical form. To base the performance of models in reflecting vulnerabilities terms, the following two experiments are carried out: retrospective-factual, comparing real-life vulnerabilities with a particularly model; and practical demonstration the evolution of vulnerability in representations in the process of the simplest program evolution. As a result of the second experiment, the increase in coverage by the vulnerability of representations in the development process is clearly shown.

show abstract

Section: Introductionunclassified

Modeling a Program with Vulnerabilities in the Terms of Its Representations Evolution. Part 2. Analytical Model and Experiment

Izrailov

2023

jour

Self Cite

View full text Add to dashboard Cite

show abstract

Methodology for Machine Code Reverse Engineering. Part 1. Preparation of the Research Object

Izrailov

2023

jour

View full text Add to dashboard Cite

The results of creating a unified methodology for reverse engineering the devices machine code are presented. The first part of the series of articles reviews scientific publications in this subject area. In the absence of satisfactory solutions, the author's process methodology is proposed, consisting of the following 4 stages: preparatory activities, static research, dynamic research and documentation. A detailed description of the steps of the first stage is provided, as well as examples of their application in practice using standard software. The scheme of the proposed methodology is presented in graphical form, and the steps given are formally written. The next part of the series of articles will describe the steps of the remaining stages and their systematization in tabular form, indicating the input and output objects, as well as the form of steps execution.

show abstract

Survey of existing methods for detecting source code duplicates

Yakovlev,

Izrailov

2023

National Security and Strategic Planning

Self Cite

View full text Add to dashboard Cite

This work is devoted to solving the identifying software duplicates problem. To do this, a short survey of existing search methods is made, consisting of the following: textual, lexical, syntactic, metric, semantic. Then a comparative analysis of the methods is carried out according to the following criteria: accuracy, completeness, speed, resource efficiency, scope of implementation; the comparison results are given in tabular form. Also, promising approaches for searching for duplicates are considered, namely, the following: machine learning, graph analysis, syntax tree analysis, dynamic characteristics analysis, spatial characteristics analysis, abstract syntax analysis. Ways to continue investigation are indicated.

show abstract

Modeling a Program with Vulnerabilities in the Terms of Its Representations Evolution. Part 1. Life Cycle Scheme

Cited by 3 publications

References 14 publications

Modeling a Program with Vulnerabilities in the Terms of Its Representations Evolution. Part 2. Analytical Model and Experiment

Modeling a Program with Vulnerabilities in the Terms of Its Representations Evolution. Part 2. Analytical Model and Experiment

Methodology for Machine Code Reverse Engineering. Part 1. Preparation of the Research Object

Survey of existing methods for detecting source code duplicates

Contact Info

Product

Resources

About