Automatic Vulnerability Detection Using Static Source Code Analysis (2005)

by Alexander Sotirov
Citations:1 - 0 self

Active Bibliography

5 Prioritizing Software Inspection Results using Static Profiling – Cathal Boogerd - 2006
5 Security Protection and Checking in Embedded System Integration against Buffer Overflow Attacks via hardware/Software – Zili Shao, Chun Xue, Qingfeng Zhuge, Edwin H.-M. Sha, Bin Xiao - 2004
69 Model checking one million lines of C code – Hao Chen, Drew Dean, David Wagner - 2004
18 Consistency analysis of authorization hook placement in the Linux security modules framework – Trent Jaeger, Antony Edwards, Xiaolan Zhang - 2004
3 UNO: Static Source Code Checking for UserDefined Properties – Gerard J. Holzmann - 2002
35 Tracking Pointers with Path and Context Sensitivity for Bug Detection in C Programs – V. Benjamin Livshits, Monica S. Lam - 2003
-i- Architectural Support For Stack Buffer Overflow Exploit Prevention – Wen-fu Kao, Dr. S. Felix Wu (chair, Wen-fu Kao - 2012
25 Generalized Constant Propagation A Study in C – Clark Verbrugge, Phong Co, Laurie Hendren - 1996
2 ALPHA: A family of structured intermediate representations for a parallelizing C compiler – Laurie J. Hendren, Guang R. Gao, Vugranam Sreedhar - 1992
14 Existential heap abstraction entailment is undecidable – Viktor Kuncak, Martin Rinard - 2003
Software Tools for Technology Transfer manuscript No. (will be inserted by the editor) Approximating the Safely Reusable Set of Learned Facts ⋆ – Domagoj Babić, Alan J. Hu
244 Vigilante: End-to-End Containment of Internet Worm Epidemics – Manuel Costa, Jon Crowcroft, Miguel Castro, Antony Rowstron, Lidong Zhou, Lintao Zhang, Paul Barham - 2008
Retaining Path-Sensitive Relations across Control-Flow Merges – Douglas Gregor, Sibylle Schupp - 2003
25 Model Checking an Entire Linux Distribution for Security Violations – Benjamin Schwarz, Hao Chen, David Wagner, Geoff Morrison, Jacob West, Jeremy Lin - 2005
27 Type Qualifiers: Lightweight Specifications to Improve Software Quality – Jeffrey Scott Foster - 2002
18 Detecting Errors with Configurable Whole-program Dataflow Analysis – Samuel Z. Guyer, Emery D. Berger, Calvin Lin - 2002
356 Flow-Sensitive Type Qualifiers – Jeffrey S. Foster, Tachio Terauchi, Alex Aiken - 2002
23 Code injection in C and C++ : A survey of vulnerabilities and countermeasures – Yves Younan, Wouter Joosen, Frank Piessens - 2004