An Improved String-Searching Algorithm and Its Application in Component Security Testing 被引量：1

An Improved String-Searching Algorithm and Its Application in Component Security Testing

导出

摘要 Mass monitor logs are produced during the process of component security testing. In order to mine the explicit and implicit security exception information of the tested component, the log should be searched for keyword strings. However, existing string-searching algorithms are not very efficient or appropriate for the operation of searching monitor logs during component security testing. For mining abnormal information effectively in monitor logs, an improved string-searching algorithm is proposed. The main idea of this algorithm is to search for the first occurrence of a character in the main string. The character should be different and farther from the last character in the pattern string. With this algorithm, the backward moving distance of the pattern string will be increased and the matching time will be optimized. In the end, we conduct an experimental study based on our approach, the results of which show that the proposed algorithm finds strings in monitor logs 11.5% more efficiently than existing approaches. Mass monitor logs are produced during the process of component security testing. In order to mine the explicit and implicit security exception information of the tested component, the log should be searched for keyword strings. However, existing string-searching algorithms are not very efficient or appropriate for the operation of searching monitor logs during component security testing. For mining abnormal information effectively in monitor logs, an improved string-searching algorithm is proposed. The main idea of this algorithm is to search for the first occurrence of a character in the main string. The character should be different and farther from the last character in the pattern string. With this algorithm, the backward moving distance of the pattern string will be increased and the matching time will be optimized. In the end, we conduct an experimental study based on our approach, the results of which show that the proposed algorithm finds strings in monitor logs 11.5% more efficiently than existing approaches.

作者 Jinfu Chen Saihua Cai Lili Zhu Yuchi Guo Rubing Huang Xiaolei Zhao Yunqi Sheng

机构地区 School of Computer Science and Communication Engineering

出处《Tsinghua Science and Technology》 SCIE EI CAS CSCD 2016年第3期281-294,共14页 清华大学学报（自然科学版（英文版）

基金 supported by the National Natural Science Foundation of China (Nos.61202110 and 61502205) the Postdoctoral Science Foundation of China (Nos.2015M571687 and 2015M581739) the Graduate Research Innovation Project of Jiangsu Province (No.KYLX15 1079)

关键词 component testing security vulnerabilities detection monitor log abnormal information string-searching component testing security vulnerabilities detection monitor log abnormal information string-searching

分类号 TP309 [自动化与计算机技术—计算机系统结构] TP391.3 [自动化与计算机技术—计算机科学与技术]

引文网络
相关文献

参考文献2

1陈锦富,卢炎生,谢晓东.一种构件安全测试错误注入模型[J].计算机研究与发展,2009,46(7):1127-1135. 被引量：8
2毛澄映,卢炎生.构件软件测试技术研究进展[J].计算机研究与发展,2006,43(8):1375-1382. 被引量：32

二级参考文献73

1杨芙清.软件工程技术发展思索[J].软件学报,2005,16(1):1-7. 被引量：266
2单锦辉,姜瑛,孙萍.软件测试研究进展[J].北京大学学报（自然科学版）,2005,41(1):134-145. 被引量：138
3姜瑛,辛国茂,单锦辉,张路,谢冰,杨芙清.一种Web服务的测试数据自动生成方法[J].计算机学报,2005,28(4):568-577. 被引量：50
4毛澄映,卢炎生.构件软件测试技术研究进展[J].计算机研究与发展,2006,43(8):1375-1382. 被引量：32
5Md Khan K,Han J.Assessing security properties of software components:A software engineer's perspective[C] //Proc of the 2006 Australian Software Engineering Conf (ASWEC).Washington,DC:IEEE,2006:199-210. 被引量：1
6Jabeen F,Jaffar-Ur-Rehman M.A framework for object oriented component testing[C] //Proc of 2005 Int Conf on Emerging Technologies.Los Alamitos,CA:IEEE,2005:451-460. 被引量：1
7Hart J,Zheng Y.Security characterisation and integrity assurance for component-based software[C] //Proc of 2000 Int Conf on Software Methods and Tools (SMT 2000).Piscataway,NJ:IEEE Computer Society,2000:61-66. 被引量：1
8Thompson H H,Whittaker J A,Mottay F E.Software security vulnerability testing in hostile environments[C] // Proc of the 2002 ACM Symposium on Applied Computing.New York:ACM,2002:260-264. 被引量：1
9Du W P,Mathur A.Vulnerability testing of software system using fault injection[R].West Lafayette:Purdue University,1998:1-20. 被引量：1
10Hsueh M C,Tsai T K,Lyer R K.Fault injection techniques and tools[J].IEEE Computer,1997,30(4):75-82. 被引量：1

共引文献36

1郭勇,苏小红,邱景.建筑全性能仿真平台内核联合测试平台的设计与实现[J].智能计算机与应用,2020(4):1-5.
2王峰,郑彦兴,包阳.软件第三方测评[J].计算机研究与发展,2008,45(z1):345-350. 被引量：6
3贾文峰.基于软件构件的MIS开发研究[J].洛阳大学学报,2007,22(2):87-90. 被引量：3
4闻怡.构件软件测试技术在程序研发中的应用[J].西安文理学院学报（自然科学版）,2007,10(4):66-69. 被引量：1
5黄茗云,王英龙,张洪亮.软件测试热点浅析[J].信息技术与信息化,2008(2):56-59. 被引量：1
6蔡树彬,明仲,李师贤.网构软件中实体发现和排序的TEA方法(英文)[J].计算机科学与探索,2008,2(4):418-430. 被引量：2
7付剑平,陆民燕.软件测试性设计综述[J].计算机应用,2008,28(11):2915-2918. 被引量：5
8陈锦富,卢炎生,谢晓东,游亮,温贤鑫.一个组件安全自动化测试平台的设计与实现[J].计算机科学,2008,35(12):229-233. 被引量：9
9陈锦富,卢炎生,张卫,谢晓东.A fault injection model-oriented testing strategy for component security[J].Journal of Central South University,2009,16(2):258-264.
10陈锦富,卢炎生,谢晓东.一种构件安全测试错误注入模型[J].计算机研究与发展,2009,46(7):1127-1135. 被引量：8

同被引文献1

1覃志东,侯颖,肖芳雄.基于蚁群优化算法的同构多核任务分配与调度[J].江苏大学学报（自然科学版）,2014,35(6):679-684. 被引量：8

引证文献1

1陈锦富,葛宏河,蔡赛华,陈加梅,詹永照.基于变异技术的第三方构件安全性测试系统[J].江苏大学学报（自然科学版）,2018,39(1):71-77. 被引量：2

二级引证文献2

1陈锦富,陈书杰,张庆晨,周敏敏,张磊.一种漏洞代码语义描述语言的设计与实现[J].江苏大学学报（自然科学版）,2020,41(3):249-255. 被引量：1
2张媛.基于污染源追踪的PHP源代码漏洞检测方法研究[J].环境科学与管理,2020,45(7):23-27.

1李慧,李春文,姜敏.Improvements on quantum binary searching algorithm[J].Optoelectronics Letters,2009,5(5):391-392.
2钟普查,鲍皖苏,魏云.Quantum Partial Searching Algorithm of a Database with Several Target Items[J].Chinese Physics Letters,2009,26(2):9-12.
3Jinfu Chen,Lili Zhu,Zhibin Xie,Michael Omari,Hilary Ackah-Arthur,Saihua Cai,Rubing Huang.An Effective Long String Searching Algorithm towards Component Security Testing[J].China Communications,2016,13(11):153-169. 被引量：2
4快意江湖.Windows目录下几大需清理的地方[J].网络与信息,2008(3):55-55.
5孟利民,宋文波.Routing Protocol Based on Grover’s Searching Algorithm for Mobile Ad-hoc Networks[J].China Communications,2013,10(3):145-156. 被引量：3
6董光宇,卿斯汉,刘克龙.带时间特性的角色授权约束[J].软件学报,2002,13(8):1521-1527. 被引量：51
7DOUGLAS BOLING,杨慧中.PLICON:敢于与众不同[J].个人电脑,1995,0(5):167-170.
8Chuitian RONG,Yasin N. SILVA,Chunqing LI.String similarity join with different similarity thresholds based on novel indexing techniques[J].Frontiers of Computer Science,2017,11(2):307-319. 被引量：2
9ZOU Weixia,GUO Chao,DU Guanglong,WANG Zhenyu,GAO Ying.A New Codebook Design Scheme for Fast Beam Searching in Millimeter-Wave Communications[J].China Communications,2014,11(6):12-22. 被引量：1
10靳露冬,吴艳,田捷,黄鹤羽,屈晓超.Moment searching algorithm for bioluminescence tomography[J].Chinese Optics Letters,2009,7(7):614-616.

Tsinghua Science and Technology

2016年第3期

浏览历史

内容加载中请稍等...