Being the Developers' Friend: Our Experience Developing a High-Precision Tool for Secure Coding

Danfeng Daphne Yao, Sazzadur Rahaman, Ya Xiao, Sharmin Afrose, Miles Frantz, Ke Tian, Na Meng, Cristina Cifuentes, Yang Zhao, Nicholas Allen, Nathan Keynes, Barton Miller (+3 others)
2022 IEEE Security and Privacy  
We discuss the needs and challenges of deployable security research by sharing our experience designing CryptoGuard, a high-precision tool for detecting cryptographic application programming interface misuses. Our project has produced multiple benchmarks as well as measurement results on state-of-the-art solutions.
doi:10.1109/msec.2022.3159481 fatcat:mlfbcnboxfez5i7rubykswqx5a