ABM : A Prototype for Benchmarking Source Code Analyzers

@inproceedings{Newsham2005ABMA,
  title={ABM : A Prototype for Benchmarking Source Code Analyzers},
  author={Tim Newsham},
  year={2005}
}
We describe a prototype benchmark for source code analyzers. The prototype uses a combination of microand macro-benchmarking to measure the vulnerabilities a tool is capable of detecting and the degree to which it is able to distinguish between safe code and vulnerable code. We describe the design and implementation of our prototype, then discuss the effect that the our experience with the prototype has had on our future goals. Our prototype, along with sample output from a number of source… CONTINUE READING

References

Publications referenced by this paper.
Showing 1-4 of 4 references

Evaluating static analysis tools for detecting buffer overflows in c code

  • K. Kratkiewicz
  • Master’s thesis, Harvard University, March
  • 2005
Highly Influential
3 Excerpts

Flawfinder

  • D. A. Wheeler
  • http://www.dwheeler.com/flawfinder/, August
  • 2005
Highly Influential
3 Excerpts

Securing software: An evaluation of static source code analyzers

  • M. Zitser
  • Master’s thesis, Massachusetts Institute of…
  • 2003
1 Excerpt

Similar Papers

Loading similar papers…