摘要： 随着Internet 以及分布式系统的不断发展和广泛应用，安全问题正在逐渐成为研究的热点。其中关于恶意代码所导致的软件安全问题也引起了人们的关注。该文重点分析了时序安全特性和竞争条件等代码分析热点问题，给出了时序安全特性的分类以及形式化描述，提出了将模式识别应用于解释性语言中的动态代码检查方法。将该方法应用于Perl 语言解释器中，实现了对Perl 语言脚本的动态检查。

关键词: 动态代码检查；模式识别；解释器；时序安全特性；竞争条件

Abstract: With the development of Internet and distributed systems, software security is becoming a research hotspot. However in the past several years, most researches focused on the static code analysis. In this paper, a method of dynamic code analysis is proposed to apply the model checking into interpreted languages. The classification and formal description of temporal safety properties are discussed for managing and maintaining them.In practice, the method is applied in the Perl interpreter to implement dynamic analysis on CGI scripts.

Key words: Dynamic code analysis; Model checking; Interpreter; Temporal safety property; Race condition