| With the development of science technology, the software plays an important role in the important areas such as economic, military, energy, and its security is also becoming increasingly prominent. Code is the cornerstone of software, so code security analysis is an important way to hold one of the most critical defense of software security. Only to remove security flaws in software code as early as possible, the final form of software products will gain higher security and reduce overall security risks of business systems.Combined with software assurance, this paper mainly researches on software code security. Firstly, this paper made an analysis and summary software code vulnerabilities and security testing techniques. Secondly, this paper made a research on security assurance in the background of globalization supply chain, and then made a software division of a commercial species and risk analysis according to its characteristics for the current development of the software industry, and came up with a set of codes improvement methods combined with the software development life cycle including design, coding, testing, security response process. Thirdly, this paper proposed a software integration model of multi-layer design, which made the complex design process simple, and then designed an integration tool based on a code security tools classification. At last this paper designed a disassembly sub-tool and it can successfully translate all prefixed single byte opcodes, and some with a prefix-byte opcodes. It ensured the correctness of the instruction parsing, and expanded the development of subsequent if errors were found, and it solved the software integration copyright issues, and in the form of a dynamic link library DLL interface to provide follow-up calls, which made it easy for the study. |
PDF Full Text Request