Static analysis by abstract interpretation: Application to the detection of heap overflows

Xavier Allamigeon; Charles Hymans

doi:10.1007/s11416-007-0063-z

Static analysis by abstract interpretation: Application to the detection of heap overflows

Xavier Allamigeon
, Charles Hymans

Airbus Group Innovations
CEA/UVSQ/CNRS

Résultats de recherche: Contribution à un journal › Article › Revue par des pairs

Résumé

Several security flaws are the consequence of the presence of programming errors or bugs in software. Heap overflow is the typical example of such errors that allows an attacker to take control of a machine. But considering the growing size and complexity of present software, implementing programs without any error is not an easy task. In this paper, we present a static analysis by abstract interpretation that is focused on security properties: without executing the program, it ensures the absence of any heap overflows.

langue originale	Anglais
Pages (de - à)	5-23
Nombre de pages	19
journal	Journal in Computer Virology
Volume	4
Numéro de publication	1
Les DOIs	https://doi.org/10.1007/s11416-007-0063-z
état	Publié - 1 févr. 2008
Modification externe	Oui

Accès au document

10.1007/s11416-007-0063-z

Contient cette citation

@article{71c83c88d6774a9581b1d29b6fa52bd7,

title = "Static analysis by abstract interpretation: Application to the detection of heap overflows",

abstract = "Several security flaws are the consequence of the presence of programming errors or bugs in software. Heap overflow is the typical example of such errors that allows an attacker to take control of a machine. But considering the growing size and complexity of present software, implementing programs without any error is not an easy task. In this paper, we present a static analysis by abstract interpretation that is focused on security properties: without executing the program, it ensures the absence of any heap overflows.",

author = "Xavier Allamigeon and Charles Hymans",

year = "2008",

month = feb,

day = "1",

doi = "10.1007/s11416-007-0063-z",

language = "English",

volume = "4",

pages = "5--23",

journal = "Journal in Computer Virology",

issn = "1772-9890",

number = "1",

}

TY - JOUR

T1 - Static analysis by abstract interpretation

T2 - Application to the detection of heap overflows

AU - Allamigeon, Xavier

AU - Hymans, Charles

PY - 2008/2/1

Y1 - 2008/2/1

N2 - Several security flaws are the consequence of the presence of programming errors or bugs in software. Heap overflow is the typical example of such errors that allows an attacker to take control of a machine. But considering the growing size and complexity of present software, implementing programs without any error is not an easy task. In this paper, we present a static analysis by abstract interpretation that is focused on security properties: without executing the program, it ensures the absence of any heap overflows.

AB - Several security flaws are the consequence of the presence of programming errors or bugs in software. Heap overflow is the typical example of such errors that allows an attacker to take control of a machine. But considering the growing size and complexity of present software, implementing programs without any error is not an easy task. In this paper, we present a static analysis by abstract interpretation that is focused on security properties: without executing the program, it ensures the absence of any heap overflows.

U2 - 10.1007/s11416-007-0063-z

DO - 10.1007/s11416-007-0063-z

M3 - Article

AN - SCOPUS:38849111784

SN - 1772-9890

VL - 4

SP - 5

EP - 23

JO - Journal in Computer Virology

JF - Journal in Computer Virology

IS - 1

ER -

Static analysis by abstract interpretation: Application to the detection of heap overflows

Résumé

Accès au document

Empreinte digitale

Contient cette citation