CCured in the real world

Condit, Jeremy; Harren, Matthew; McPeak, Scott; Necula, George C.; Weimer, Westley

doi:10.1145/781154.781157

Cited by 24 publications

(33 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Many expressions are equivalent to normalized expressions. For example, suppose x is a structure variable with type struct{int a [3]; int b [2];}, then x.a [1] is equivalent to * ((int * )((unsigned)&x+4)), and x.b [1] is equivalent to * ((int * )((unsigned)&x+16)). However, there is no normalized expression which is equivalent to a lvalue that contains "bit field".…”

Section: A Normalized Expressionmentioning

confidence: 99%

See 1 more Smart Citation

Simplifying Buffer Overflow Detection Using Site-Safe Expressions

Chen

2009

2009 Eighth IEEE/ACIS International Conference on Computer and Information Science

View full text Add to dashboard Cite

We present a highly automated technique to identify buffer overflows in C source code, and implement the approach in our prototype cboc. It is a sound tool, and of particular significance is its ability to easily deal with pointer expressions and dynamic memory allocations, which are integral parts of the buffer overflow problem. Our implementation hinges on a key design consideration: introducing the notion of site-safe expression allows us to manage pointer dereference expediently, and the expense is that it may yield some false alarms. Fortunately, only a small number of false alarms are reported, and all probable false alarms belong to a special alarm type non-site-safe. Experiments show that cboc is competitive with state-of-the-art model checker CBMC.

show abstract

Section: A Normalized Expressionmentioning

confidence: 99%

“…Dynamic detection strategy [3], adds memory safety guarantees to programs by inserting run-time checks. Such approaches will incur performance penalties.…”

Section: Introductionmentioning

confidence: 99%

Simplifying Buffer Overflow Detection Using Site-Safe Expressions

Chen

2009

2009 Eighth IEEE/ACIS International Conference on Computer and Information Science

View full text Add to dashboard Cite

show abstract

“…Safe dialects of C and C++ use techniques such as restriction in memory management to prevent any implementation errors. Examples of such methods are shown in [25,32,35].…”

Section: Countermeasures Against Software Attacksmentioning

confidence: 99%

Embedded systems security—an overview

Parameswaran

Wolf

2008

Des Autom Embed Syst

View full text Add to dashboard Cite

show abstract

“…While these techniques have been effectively used in finding software defects, they cannot be applied to runtime error-detection in applications. C-Cured [7] is a system to protect programs from memory errors using a combination of static checking and runtime assertions wherever static checks fail. While C-cured is effective in detecting software errors that violate memory safety, it cannot detect runtime errors resulting from hardware transient faults or software errors that do not violate memory safety.…”

Section: Related Workmentioning

confidence: 99%

Dynamic Derivation of Application-Specific Error Detectors and their Implementation in Hardware

Pattabiraman

Saggese

Chen

et al. 2006

2006 Sixth European Dependable Computing Conference

View full text Add to dashboard Cite

This paper proposes a novel technique for preventing a wide range of data errors from corrupting the execution of applications. The proposed technique enables automated derivation of fine-grained, application-specific error detectors. An algorithm based on dynamic traces of application execution is developed for extracting the set of error detector classes, parameters, and locations in order to maximize the error detection coverage for a target application. The paper also presents an automatic framework for synthesizing the set of detectors in hardware to enable low-overhead runtime checking of the application execution. Coverage (evaluated using fault injection) of the error detectors derived using the proposed methodology, the additional hardware resources needed, and performance overhead for several benchmark programs are also reported.

show abstract

CCured in the real world

Cited by 24 publications

References 0 publications

Simplifying Buffer Overflow Detection Using Site-Safe Expressions

Simplifying Buffer Overflow Detection Using Site-Safe Expressions

Embedded systems security—an overview

Dynamic Derivation of Application-Specific Error Detectors and their Implementation in Hardware

Contact Info

Product

Resources

About