用于漏洞检测的中间语言表示方法.

The intermediate language adopted in existing Web vulnerability detection methods is designed for a specific programming language. However, when abstracting a vulnerability from the source code of multiple programming languages, a unified intermediate language cannot represent the same type of vulnerability in multiple languages, which increases the difficulty of subsequent vulnerability analysis. To deal with this problem, this paper proposed an intermediate language based on taint analysis to realize the unified abstract representation of the same type of vulnerability information in multiple programming languages. In the design process of the intermediate language, it firstly abstracted the process of vulnerability as a triple representation, and the code elements related to the triple were abstracted as the keywords of the intermediate language. Secondly, it designed the syntax of the intermediate language according to the semantic relationship between the triples. Thirdly, it utilized the taint analysis method to trace the execution path of the taint source when escaping, and the intermediate language representation could be obtained by escaping the source code in the path. Finally, it applied the intermediate language to the vulnerability detection model. The experimental results show that compared with the other intermediate languages' abstract representation of vulnerability information in programming languages, the proposed intermediate language is more universal and more effective for vulnerability detection. [ABSTRACT FROM AUTHOR]