Statically Detecting Likely Buffer Overflow Vulnerabilities

DSpace/Manakin Repository

Statically Detecting Likely Buffer Overflow Vulnerabilities

Show simple item record

dc.contributor.author Larochelle, David
dc.contributor.author Evans, David
dc.date.accessioned 2011-07-18T17:54:13Z
dc.date.issued 2001
dc.identifier.citation David Larochelle, David Evans, Statically Detecting Likely Buffer Overflow Vulnerabilities, 2001 USENIX Security Symposium, Washington, D.C., August 13-17 2001. en_US
dc.identifier.uri http://nrs.harvard.edu/urn-3:HUL.InstRepos:5027549
dc.description.abstract Buffer overflow attacks may be today’s single most important security threat. This paper presents a new approach to mitigating buffer overflow vulnerabilities by detecting likely vulnerabilities through an analysis of the program source code. Our approach exploits information provided in semantic comments and uses lightweight and efficient static analyses. This paper describes an implementation of our approach that extends the LCLint annotation-assisted static checking tool. Our tool is as fast as a compiler and nearly as easy to use. We present experience using our approach to detect buffer overflow vulnerabilities in two security-sensitive programs. en_US
dc.language.iso en_US en_US
dc.relation.isversionof http://www.usenix.org/events/sec01/larochelle.html en_US
dc.relation.hasversion http://www.cs.virginia.edu/~drl7x/publications.html#usenix2001 en_US
dash.license LAA
dc.subject security en_US
dc.subject buffer overflow en_US
dc.subject static analysis en_US
dc.title Statically Detecting Likely Buffer Overflow Vulnerabilities en_US
dc.type Conference Paper en_US
dc.description.version Version of Record en_US
dc.relation.journal 10th USENIX Security Symposium en_US
dash.depositing.author Larochelle, David
dc.date.available 2011-07-18T17:54:13Z

Files in this item

Files Size Format View xmlui.dri2xhtml.METS-1.0.item-files-description
larochelle.pdf 122.0Kb PDF View/Open PDF of the published version
usenix01.html 232.8Kb HTML View/Open HTML file with the final version of the paper
usenix_presentation.pdf 46.13Kb PDF View/Open PDF of the slides used when the paper was presented
usenix.ppt 176.5Kb Microsoft PowerPoint View/Open Power Point file of the slides used when the paper was presented.

This item appears in the following Collection(s)

Show simple item record

 
 

Search DASH


Advanced Search
 
 

Submitters