ISA: a source code static vulnerability detection system based on data fusion

@inproceedings{Kong2007ISAAS,
  title={ISA: a source code static vulnerability detection system based on data fusion},
  author={Deguang Kong and Quan Zheng and Chao Chen and Jianmei Shuai and Ming Zhu},
  booktitle={Infoscale},
  year={2007}
}
Static analysis is a kind of effective method to detect the vulnerabilities in the software. Without running the programs, static analysis tools can be used to automatically discover unknown bugs. To cope with the problem of high false positives and false negatives in source code static analysis methods, this paper presents a source code static analysis technology for vulnerability detection based on data fusion. By parsing and making data fusion on the outcome of different static analysis… CONTINUE READING