In the realm of computing, software security is paramount, defending against malicious attacks. As software systems play an increasingly vital role in daily life, the necessity for secure coding practices has grown. Static code analysis serves as a crucial mechanism for software assurance, aiming to predict vulnerabilities before code release. This research proposes an enhanced method for vulnerability prediction through static code analysis. The approach employs control flow and data flow analysis, utilizing an abstract syntax tree for granular source code navigation. Expected outcomes include an implementable method that outperforms existing techniques, serving as a valuable tool for software engineers and managers.

Authors: T.O. Alabi, A.O. Oronti, O.O. Abereowo , O.Y. Ogunlola, B.I. Alese

Published in: International Conference for Internet Technology and Secured Transactions (ICITST-2023)

  • Date of Conference: 13-15 November 2023
  • DOI: 10.20533/ICITST.2023.0025
  • ISBN: 978-1-913572-63-1
  • Conference Location: St Anne’s College, Oxford University, UK