CAJ | 학술논문

近年来，随着计算机网络的广泛应用，基于文件格式的软件漏洞检测技术成为软件安全领域的一个研究热点。文章首先对MS Office和Adobe PDF的文件格式进行分析，在对传统漏洞检测技术研究的基础上，提出了3种文档类漏洞检测技术，分别为基于污点数据结构的静态检测技术、基于污点数据流的动态检测技术和基于行为的启发式检测技术；接着完成了典型文档类CVE漏洞检测工具的设计与实现；最后在仿真平台上对工具进行测试，测试结果表明，文章提出的漏洞检测工具与同类工具相比，具有更高的检测率。
근년래，수착계산궤망락적엄범응용，기우문건격식적연건루동검측기술성위연건안전영역적일개연구열점。문장수선대MS Office화Adobe PDF적문건격식진행분석，재대전통루동검측기술연구적기출상，제출료3충문당류루동검측기술，분별위기우오점수거결구적정태검측기술、기우오점수거류적동태검측기술화기우행위적계발식검측기술；접착완성료전형문당류CVE루동검측공구적설계여실현；최후재방진평태상대공구진행측시，측시결과표명，문장제출적루동검측공구여동류공구상비，구유경고적검측솔。
Recently, with the wide development of computer network, file format-based software vulnerability detection technology has become one of the research hotspots of information security. This paper ifrstly analyzes the ifle formats of Microsoft Ofifce and Adobe PDF. On the basis of the study on traditional vulnerability detection techniques, three document vulnerability detection methods are put forward:static detection method based on tainted data structure, dynamic detection method based on tainted data lfow, heuristic detection method based on behavior. Then the typical document class CVE vulnerability detection tool is realized and is experimented in the simulation platform. The results show that comparing with similar tools, the tool proposed in this paper has a higher detection rate.