Improving computer security using extended static checking

Posted on:2003-05-21

Degree:Ph.D

Type:Dissertation

University:University of California, Santa Cruz

Candidate:Chess, Brian VanTuyl

Full Text:PDF

GTID:1468390011983231

Subject:Computer Science

Abstract/Summary:

I describe a method for finding security flaws in source code by way of static analysis. The method is notable because it allows a user to specify a wide range of security properties while also leveraging a set of predefined common flaws. It works by using an automated theorem prover to analyze verification conditions generated from C source code and a set of specifications that define security properties. In order to help lower the cost of using the checker, I present a method for automatically generating application-specific specifications based on a generic specification library. I demonstrate that the method can be used to identify real vulnerabilities in real programs.

Keywords/Search Tags:

Security, Method, Using

Related items

1	Research On Security Model Checking Method Of Virtual System Based On Ontology
2	Study On The Method Of E-Commerce Security
3	Research On Implement Method Of Seurity Architecture In GFMIS
4	Network Security Assessment Detection Method
5	Analysis And Research On Campus Network Security Evaluation
6	The Research And Application Of Some Key Technologies Of Information Security
7	Research On The Theory Of Petri Net Based Analysis And Verification Of Security Policies
8	The Research Of Full Automatic Detection Method For Security Policy Of JVM Run-time Library
9	Design Of Host Security Evaluation Method
10	Method For Software Security Design Based On Security Pattern