论文信息 - Static Analysis Tool Exposition (SATE) 2008

Static Analysis Tool Exposition (SATE) 2008

The NIST SAMATE project conducted the first Static Analysis Tool Exposition (SATE) in 2008 to advance research in static analysis tools that find security defects in source code. The main goals of SATE were to enable empirical research based on large test sets and to encourage improvement and speed adoption of tools. The exposition was planned to be an annual event. Briefly, participating tool makers ran their tool on a set of programs. Researchers led by NIST performed a partial analysis of tool reports. The results and experiences were reported at the Static Analysis Workshop in Tucson, AZ, in June, 2008. The tool reports and analysis were made publicly available in 2009. This paper describes the SATE procedure, provides our observations based on the data collected, and critiques the exposition, including the lessons learned that may help future expositions. This paper also identifies several ways in which the released data and analysis are useful. First, the output from running many tools on production software can be used for empirical research. Second, the analysis of tool reports indicates weaknesses that exist in the software and that are reported by the tools. Finally, the analysis may also be used as a building block for a further study of the weaknesses and of static analysis.

Vadim Okun | Paul E. Black | Romain Gaucher

[1] Michael J. Kass,et al. NIST Software Assurance Metrics and Tool Evaluation (SAMATE) , 2005 .

[2] Gary McGraw,et al. Seven Pernicious Kingdoms: A Taxonomy of Software Security Errors , 2005, IEEE Secur. Priv..

[3] M. Merkow,et al. 2010 CWE/SANS Top 25 Most Dangerous Programming Errors , 2010 .

[4] Gerard J. Holzmann,et al. The power of 10: rules for developing safety-critical code , 2006, Computer.

[5] Laurie A. Williams,et al. On the value of static analysis for fault detection in software , 2006, IEEE Transactions on Software Engineering.

[6] Richard Lippmann,et al. Testing static analysis tools using exploitable buffer overflows from open source code , 2004, SIGSOFT '04/FSE-12.

[7] D. J. Malcolme-Lawes,et al. If… Then….Else , 1969 .

[8] Paul E. Black,et al. Source code security analysis tool functional specification version 1.0 , 2007 .

[9] Kimberly Williams,et al. How Did I Get Here , 2009 .

[10] Jacob West,et al. Secure Programming with Static Analysis , 2007 .

[11] Paul E. Black. Software Assurance Metrics and Tool Evaluation , 2005, Software Engineering Research and Practice.

[12] Richard P. Lippmann,et al. Using a Diagnostic Corpus of C Programs to Evaluate Buffer Overflow Detection by Static Analysis Tools , 2005 .