loading
Papers

Research.Publish.Connect.

Paper

Paper Unlock

Author: Milena Vujosevic-Janicic

Affiliation: Faculty of Mathematics, University of Belgrade, Serbia

ISBN: 978-989-8111-51-7

Keyword(s): C programming language, buffer overflow, static analysis, automated bug detection.

Related Ontology Subjects/Areas/Topics: Languages and Compilers ; Programming Languages ; Software Engineering

Abstract: We consider the problem of buffer overflows in C programs. This problem is very important because buffer overflows are suitable targets for security attacks and sources of serious programs’ misbehavior. Buffer overflow bugs can be detected at run-time by dynamic analysis, and before run-time by static analysis. In this paper we present a new static, modular approach for automated detection of buffer overflows. Our approach is flow-sensitive and inter-procedural, and it deals with both statically and dynamically allocated buffers. Its architecture is flexible and pluggable — for instance, for checking generated correctness and incorrectness conditions, it can use any external automated theorem prover that follows SMT-LIB standards. The system uses an external and easily extendable knowledge database that stores all the reasoning rules so they are not hard-coded within the system. We also report on our prototype implementation, the FA D O tool, and on its experimental results.

PDF ImageFull Text

Download
CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.233.226.151

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Vujosevic-Janicic M. and (2008). ENSURING SAFE USAGE OF BUFFERS IN PROGRAMMING LANGUAGE C.In Proceedings of the Third International Conference on Software and Data Technologies - Volume 1: ICSOFT, ISBN 978-989-8111-51-7, pages 29-36. DOI: 10.5220/0001891200290036

@conference{icsoft08,
author={Milena Vujosevic{-}Janicic},
title={ENSURING SAFE USAGE OF BUFFERS IN PROGRAMMING LANGUAGE C},
booktitle={Proceedings of the Third International Conference on Software and Data Technologies - Volume 1: ICSOFT,},
year={2008},
pages={29-36},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0001891200290036},
isbn={978-989-8111-51-7},
}

TY - CONF

JO - Proceedings of the Third International Conference on Software and Data Technologies - Volume 1: ICSOFT,
TI - ENSURING SAFE USAGE OF BUFFERS IN PROGRAMMING LANGUAGE C
SN - 978-989-8111-51-7
AU - Vujosevic-Janicic, M.
PY - 2008
SP - 29
EP - 36
DO - 10.5220/0001891200290036

Login or register to post comments.

Comments on this Paper: Be the first to review this paper.