Please use this identifier to cite or link to this item: https://research.matf.bg.ac.rs/handle/123456789/784
DC FieldValueLanguage
dc.contributor.authorVujošević Janičić, Milenaen_US
dc.date.accessioned2022-08-15T15:37:16Z-
dc.date.available2022-08-15T15:37:16Z-
dc.date.issued2008-11-17-
dc.identifier.isbn9789898111517-
dc.identifier.urihttps://research.matf.bg.ac.rs/handle/123456789/784-
dc.description.abstractWe consider the problem of buffer overflows in C programs. This problem is very important because buffer overflows are suitable targets for security attacks and sources of serious programs' misbehavior. Buffer overflow bugs can be detected at run-time by dynamic analysis, and before run-time by static analysis. In this paper we present a new static, modular approach for automated detection of buffer overflows. Our approach is flow-sensitive and inter-procedural, and it deals with both statically and dynamically allocated buffers. Its architecture is flexible and pluggable - for instance, for checking generated correctness and incorrectness conditions, it can use any external automated theorem prover that follows SMT-LIB standards. The system uses an external and easily extendable knowledge database that stores all the reasoning rules so they are not hard-coded within the system. We also report on our prototype implementation, the FADO tool, and on its experimental results.en
dc.subjectAutomated bug detectionen
dc.subjectBuffer overflowen
dc.subjectC programming languageen
dc.subjectStatic analysisen
dc.titleEnsuring safe usage of buffers in programming language Cen_US
dc.typeConference Paperen_US
dc.relation.publicationICSOFT 2008 - Proceedings of the 3rd International Conference on Software and Data Technologiesen_US
dc.identifier.scopus2-s2.0-55849103248-
dc.identifier.urlhttps://api.elsevier.com/content/abstract/scopus_id/55849103248-
dc.contributor.affiliationInformatics and Computer Scienceen_US
dc.relation.firstpage29en_US
dc.relation.lastpage36en_US
dc.relation.volumePLen_US
dc.relation.issueDPS/KE/-en_US
item.fulltextNo Fulltext-
item.openairecristypehttp://purl.org/coar/resource_type/c_18cf-
item.cerifentitytypePublications-
item.grantfulltextnone-
item.openairetypeConference Paper-
crisitem.author.deptInformatics and Computer Science-
crisitem.author.orcid0000-0001-5396-0644-
Appears in Collections:Research outputs
Show simple item record

Page view(s)

18
checked on Dec 24, 2024

Google ScholarTM

Check

Altmetric


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.