Model-Checking for Software Vulnerabilities Detection with Multi-Language Support

13 years 5 months ago

Download users.encs.concordia.ca

In this paper we develop a security verification framework for open source software with a multi-language support. We base our approach on the GCC compiler which is considered as the defacto open source compiler for several languages including C, C++, JAVA, ADA, FORTRAN, etc. To achieve our goal we use a conventional push down system model-checker for reachability properties, and turn it into a fully fledged verification tool for both low and high level software security properties. We also allow programmers to define a wide range of temporal security properties using an automata-based specification approach. As a result, our approach can model-check large scale software against system-specific security properties.

Rachid Hadjidj, Xiaochun Yang, Syrine Tlili, Moura

Real-time Traffic

Open Source | PST 2008 | Security Privacy | Security Properties | Security Verification Framework |

claim paper

» Continuous Verification of Large Embedded Software Using SMTBased Bounded Model Checking

» Quantifying information leaks in software

» Security Modelling for Electronic Commerce The Common Electronic Purse Specifications

» Satbased Model Checking for Region Automata

» Static detection of crosssite scripting vulnerabilities

» Detection and Prediction of ResourceExhaustion Vulnerabilities

» The Ins and Outs of the Probabilistic Model Checker MRMC

» Memsherlock an automated debugger for unknown memory corruption vulnerabilities

Post Info
More Details (n/a)

Added	30 Oct 2010
Updated	30 Oct 2010
Type	Conference
Year	2008
Where	PST
Authors	Rachid Hadjidj, Xiaochun Yang, Syrine Tlili, Mourad Debbabi

Comments (0)

Sciweavers

Model-Checking for Software Vulnerabilities Detection with Multi-Language Support

Open Source | PST 2008 | Security Privacy | Security Properties | Security Verification Framework |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers