Improving security using extensible lightweight static analysis

D. Evans, D. Larochelle
2002 IEEE Software  
Most security attacks exploit instances of wellknown classes of implementation flaws. Many of these flaws could be detected and eliminated before software is deployed. These problems continue to be present with disturbing frequency, not because they are not sufficiently understood by the security community, but because techniques for preventing them have not been integrated into the software development process. This paper describes an extensible tool that uses lightweight static analysis to
more » ... ect common security vulnerabilities (including buffer overflows and format string vulnerabilities) and can be readily extended to detect new vulnerabilities.
doi:10.1109/52.976940 fatcat:b6uozxksebgnnf5y3vqisr63hi