|
|
|
Á¤ÀûºÐ¼®µµ±¸ – SAP ABAP °¡À̵å Ç¥ÁØ Áö¿ø
SAP ABAPÀÇ Á¤ÀûºÐ¼®µµ±¸´Â ÄÄÆÄÀÏ °úÁ¤ ¾øÀÌ ¿ø½Ã ¼Ò½ºÄڵ带 ºÐ¼®ÇÏ°í, Inter-procedural Analysis ±â¼ú ±â¹ÝÀ¸·Î SAPÀÇ ½Å·Ú¼º(ÄÚµù Ç¥ÁØ), ¾ÈÀü¼º(Run-time Error), º¸¾È¼º(º¸¾È Ãë¾àÁ¡)ÀÇ Ç¥ÁصéÀ» ÅëÇÕÁ¡°ËÇÏ´Â Á¤ÀûºÐ¼®µµ±¸ÀÔ´Ï´Ù.
ƯÈ÷, ¹éµµ¾î(SAP Backdoor)´Â Vulnerability¸¦ ÅëÇØ ÇÕ¹ýÀû ¶Ç´Â ¾ÇÀÇÀûÀÎ Backdoor Åë·Î¸¦ ½É´Â °ÍÀ¸·Î, ±× Vulnerability¸¦ ŽÁöÇÏ´Â ¼¼°è ÃÖÃÊÀÇ ±â¼úÀÔ´Ï´Ù.
|
|
SAP Ç¥ÁØ Áö¿ø
ÄÚµù °¡À̵å Áؼö Á¡°Ë: Official ABAP Programming Guidelines
Run-time ¿¡·¯ Á¡°Ë: SAP ABAP Guide, CWE
º¸¾È Ãë¾àÁ¡ Á¡°Ë: SAP ABAP Guide, CWE
Backdoor Á¡°Ë: SAP ABAP Guide
ÁÖ¿ä ±â´É
(Rule Name) SAP ABAP ¹× CWE Ç¥ÁØÀÇ Rule À̸§À¸·Î One-Guide to One-Rule Á¦°ø
(Exception Code Process) ¿¹¿Ü ÄÚµå ÀÚµ¿ µî·Ï ¹× °ü¸®·Î Á¡°Ë½Ã ÀÚµ¿ Á¦¿Ü
(SDLC Chain) Á¤ÀûºÐ¼®µµ±¸°ú Çü»ó°ü¸®½Ã½ºÅÛÀÇ ¿¬µ¿À¸·Î ÄÚµå Á¡°Ë ÀÚµ¿È
(Plug-in) Eclipse, Jenkins µî ´Ù¼ö
ÁÖ¿ä °í°´
ÀüÀÚ, Á¦Á¶ µî ´ë±â¾÷ÀÇ ABAP Ç¥ÁØ µµ±¸
ÁöÀûÀç»ê±Ç
¼¼°è ÃÖÃÊ ABAP ÄÚµå °Ë»ç µµ±¸ÀÇ ±¹³»¿Ü ƯÇã µî·Ï: Çѱ¹, ¹Ì±¹, ÀϺ», Áß±¹, È£ÁÖ)
|
|
|
|
|
|