Clang and Coccinelle: Synergising program analysis tools for CERT C Secure Coding Standard certification
暂无分享,去创建一个
[1] MullerGilles,et al. Documenting and automating collateral evolutions in linux device drivers , 2008 .
[2] Robert C. Seacord. The CERT C Secure Coding Standard , 2008 .
[3] David Evans,et al. Statically Detecting Likely Buffer Overflow Vulnerabilities , 2001, USENIX Security Symposium.
[4] Julia L. Lawall,et al. Documenting and automating collateral evolutions in linux device drivers , 2008, Eurosys '08.
[5] Thomas W. Reps,et al. Program Analysis Using Weighted Pushdown Systems , 2007, FSTTCS.
[6] Julia L. Lawall,et al. WYSIWIB: A declarative approach to finding API protocols and bugs in Linux code , 2009, DSN.
[7] Somesh Jha,et al. Weighted pushdown systems and their application to interprocedural dataflow analysis , 2003, Sci. Comput. Program..
[8] Dawson R. Engler,et al. Checking system rules using system-specific, programmer-written compiler extensions , 2000, OSDI.
[9] Julia L. Lawall,et al. Finding Error Handling Bugs in OpenSSL Using Coccinelle , 2010, 2010 European Dependable Computing Conference.
[10] Julia L. Lawall,et al. Tracking code patterns over multiple software versions with Herodotos , 2010, AOSD.
[11] Damien Doligez,et al. A foundation for flow-based program matching: using temporal logic and model checking , 2009, POPL '09.