An Overview of Source Code Audit

Abstract

Software vulnerability reports and reports of software exploitations continue to grow at an alarming rate in recent years. Many security issues are appeared in codes. The source code audit can improve the source code quality and avoid potential vulnerabilities in application system. This paper firstly expounded the principles of code audit and the purpose of Code audit is to make sure developers strictly follow the security technology, also briefly introducing the CERT secure coding standards which provide a detailed enumeration of coding errors that have caused vulnerabilities. Next, summarized the audit methods and techniques and compared the analysis tools for source code audit, then, show the value and significance of code audit. Finally, the development trend of audit technology is estimated.