Pattern Matching Security Properties of Code using Dependence Graphs

@inproceedings{Wilander2005PatternMS,
  title={Pattern Matching Security Properties of Code using Dependence Graphs},
  author={John Wilander and Pia F{\aa}k},
  year={2005}
}
In recent years researchers have presented several tools for statically checking security properties of C code. But they all (currently) focus on one or two categories of security properties each. We have proposed dependence graphs decorated with type-cast and range information as a more generic formalism allowing both for visual communication with the programmer and static analysis checking several security properties at once. Our prototype tool GraphMatch currently checks code for input… CONTINUE READING