18267684. PROGRAM ANALYSIS APPARATUS, PROGRAM ANALYSIS METHOD, AND NON-TRANSITORY COMPUTER READABLE MEDIUM STORING PROGRAM simplified abstract (NEC Corporation)
PROGRAM ANALYSIS APPARATUS, PROGRAM ANALYSIS METHOD, AND NON-TRANSITORY COMPUTER READABLE MEDIUM STORING PROGRAM
Organization Name
Inventor(s)
PROGRAM ANALYSIS APPARATUS, PROGRAM ANALYSIS METHOD, AND NON-TRANSITORY COMPUTER READABLE MEDIUM STORING PROGRAM - A simplified explanation of the abstract
This abstract first appeared for US patent application 18267684 titled 'PROGRAM ANALYSIS APPARATUS, PROGRAM ANALYSIS METHOD, AND NON-TRANSITORY COMPUTER READABLE MEDIUM STORING PROGRAM
Simplified Explanation
The patent application describes a program analysis apparatus that extracts specific code blocks from a program's binary and calculates a backdoor score based on the content of a sensitive operation within the code block and the relationship between different code blocks.
- The apparatus extracts a first code block with a specific property and a second code block performing a predetermined sensitive operation from the program's binary.
- It acquires relationship information indicating the control flow relationship between the first and second code blocks.
- The apparatus calculates a backdoor score based on the content of the sensitive operation in the first code block and performs addition and subtraction of the backdoor score based on the relationship information.
- It outputs the first code block and the backdoor score for the first code block.
Potential applications of this technology:
- Software security analysis: The apparatus can be used to identify potential backdoors or vulnerabilities in software programs by analyzing the code blocks and their relationships.
- Malware detection: By analyzing the sensitive operations and their relationships, the apparatus can help identify malicious code blocks within a program.
- Code optimization: The apparatus can analyze the code blocks and their relationships to identify areas for optimization or performance improvement.
Problems solved by this technology:
- Identification of backdoors: The apparatus helps in identifying potential backdoors in software programs by analyzing the code blocks and their relationships.
- Detection of malicious code: By analyzing the sensitive operations and their relationships, the apparatus can help detect malicious code within a program.
- Code optimization: The apparatus can identify areas for code optimization or performance improvement by analyzing the code blocks and their relationships.
Benefits of this technology:
- Enhanced software security: By identifying potential backdoors and malicious code, the apparatus helps improve the security of software programs.
- Efficient code analysis: The apparatus provides a systematic approach to analyze code blocks and their relationships, enabling efficient software analysis and optimization.
- Improved performance: By identifying areas for code optimization, the apparatus helps improve the performance of software programs.
Original Abstract Submitted
A program analysis apparatus includes a first code block extraction means for extracting a first code block having a specific property from codes included in a binary of a program, a second code block extraction means for extracting a second code block performing a predetermined sensitive operation from the codes included in the binary of the program, a relationship information acquisition means for acquiring relationship information indicating a relationship on a control flow between the first code block and the second code block, a backdoor score calculation means for calculating a backdoor score based on content of the predetermined sensitive operation in the first code block and performing addition and subtraction of the backdoor score with respect to the first code block based on the relationship information, and an output means for outputting the first code block and the backdoor score for the first code block.
