Statically Detecting Likely Buffer Overflow Vulnerabilities

Statically Detecting Likely Buffer Overflow Vulnerabilities

DSpace/Manakin Repository

Statically Detecting Likely Buffer Overflow Vulnerabilities

dc.contributor.author	Larochelle, David
dc.contributor.author	Evans, David
dc.date.accessioned	2011-07-18T17:54:13Z
dc.date.issued	2001
dc.identifier.citation	David Larochelle, David Evans, Statically Detecting Likely Buffer Overflow Vulnerabilities, 2001 USENIX Security Symposium, Washington, D.C., August 13-17 2001.	en_US
dc.identifier.uri	http://nrs.harvard.edu/urn-3:HUL.InstRepos:5027549
dc.description.abstract	Buffer overflow attacks may be today’s single most important security threat. This paper presents a new approach to mitigating buffer overflow vulnerabilities by detecting likely vulnerabilities through an analysis of the program source code. Our approach exploits information provided in semantic comments and uses lightweight and efficient static analyses. This paper describes an implementation of our approach that extends the LCLint annotation-assisted static checking tool. Our tool is as fast as a compiler and nearly as easy to use. We present experience using our approach to detect buffer overflow vulnerabilities in two security-sensitive programs.	en_US
dc.language.iso	en_US	en_US
dc.relation.isversionof	http://www.usenix.org/events/sec01/larochelle.html	en_US
dc.relation.hasversion	http://www.cs.virginia.edu/~drl7x/publications.html#usenix2001	en_US
dash.license	LAA
dc.subject	security	en_US
dc.subject	buffer overflow	en_US
dc.subject	static analysis	en_US
dc.title	Statically Detecting Likely Buffer Overflow Vulnerabilities	en_US
dc.type	Conference Paper	en_US
dc.description.version	Version of Record	en_US
dc.relation.journal	10th USENIX Security Symposium	en_US
dash.depositing.author	Larochelle, David
dc.date.available	2011-07-18T17:54:13Z

Files in this item

Files	Size	Format	View	xmlui.dri2xhtml.METS-1.0.item-files-description
larochelle.pdf	122.0Kb	PDF	View/Open	PDF of the published version
usenix01.html	232.8Kb	HTML	View/Open	HTML file with the final version of the paper
usenix_presentation.pdf	46.13Kb	PDF	View/Open	PDF of the slides used when the paper was presented
usenix.ppt	176.5Kb	Microsoft PowerPoint	View/Open	Power Point file of the slides used when the paper was presented.

This item appears in the following Collection(s)

HLS Scholarly Articles [204]
Scholarly articles from the Harvard Law School

Show simple item record

Contact administrator regarding this item (to report mistakes or request changes)

Advanced Search

All of DASH
This Collection

Statically Detecting Likely Buffer Overflow Vulnerabilities

DSpace/Manakin Repository

Statically Detecting Likely Buffer Overflow Vulnerabilities

Files in this item

This item appears in the following Collection(s)

Search DASH

Browse

All of DASH

This Collection

Submitters