Static analysis by abstract interpretation: Application to the detection of heap overflows

Xavier Allamigeon; Charles Hymans

doi:10.1007/s11416-007-0063-z

Static analysis by abstract interpretation: Application to the detection of heap overflows

Xavier Allamigeon
, Charles Hymans

Airbus Group Innovations
CEA/UVSQ/CNRS

Research output: Contribution to journal › Article › peer-review

Abstract

Several security flaws are the consequence of the presence of programming errors or bugs in software. Heap overflow is the typical example of such errors that allows an attacker to take control of a machine. But considering the growing size and complexity of present software, implementing programs without any error is not an easy task. In this paper, we present a static analysis by abstract interpretation that is focused on security properties: without executing the program, it ensures the absence of any heap overflows.

Original language	English
Pages (from-to)	5-23
Number of pages	19
Journal	Journal in Computer Virology
Volume	4
Issue number	1
DOIs	https://doi.org/10.1007/s11416-007-0063-z
Publication status	Published - 1 Feb 2008
Externally published	Yes

Access to Document

10.1007/s11416-007-0063-z

Cite this

@article{71c83c88d6774a9581b1d29b6fa52bd7,

title = "Static analysis by abstract interpretation: Application to the detection of heap overflows",

abstract = "Several security flaws are the consequence of the presence of programming errors or bugs in software. Heap overflow is the typical example of such errors that allows an attacker to take control of a machine. But considering the growing size and complexity of present software, implementing programs without any error is not an easy task. In this paper, we present a static analysis by abstract interpretation that is focused on security properties: without executing the program, it ensures the absence of any heap overflows.",

author = "Xavier Allamigeon and Charles Hymans",

year = "2008",

month = feb,

day = "1",

doi = "10.1007/s11416-007-0063-z",

language = "English",

volume = "4",

pages = "5--23",

journal = "Journal in Computer Virology",

issn = "1772-9890",

number = "1",

}

TY - JOUR

T1 - Static analysis by abstract interpretation

T2 - Application to the detection of heap overflows

AU - Allamigeon, Xavier

AU - Hymans, Charles

PY - 2008/2/1

Y1 - 2008/2/1

N2 - Several security flaws are the consequence of the presence of programming errors or bugs in software. Heap overflow is the typical example of such errors that allows an attacker to take control of a machine. But considering the growing size and complexity of present software, implementing programs without any error is not an easy task. In this paper, we present a static analysis by abstract interpretation that is focused on security properties: without executing the program, it ensures the absence of any heap overflows.

AB - Several security flaws are the consequence of the presence of programming errors or bugs in software. Heap overflow is the typical example of such errors that allows an attacker to take control of a machine. But considering the growing size and complexity of present software, implementing programs without any error is not an easy task. In this paper, we present a static analysis by abstract interpretation that is focused on security properties: without executing the program, it ensures the absence of any heap overflows.

U2 - 10.1007/s11416-007-0063-z

DO - 10.1007/s11416-007-0063-z

M3 - Article

AN - SCOPUS:38849111784

SN - 1772-9890

VL - 4

SP - 5

EP - 23

JO - Journal in Computer Virology

JF - Journal in Computer Virology

IS - 1

ER -

Static analysis by abstract interpretation: Application to the detection of heap overflows

Abstract

Access to Document

Fingerprint

Cite this