Using programmer-written compiler extensions to catch security holes Export

by: K. Ashcraft, D. Engler

Security and Privacy, 2002. Proceedings. 2002 IEEE Symposium on (2002), pp. 143-159.

[Posts]

View FullText article

DOI, IEEE Explore, Rent at DeepDyve

krisn11's tags for this article

c security

Reviews [Write a review of this article]

Find related articles from these CiteULike users

plaugg, martink, neilc, krisn11

Find related articles with these CiteULike tags

c, security, static_analysis, static-analysis

Abstract

This paper shows how system-specific static analysis can find security errors that violate rules such as "integers from untrusted sources must be sanitized before use" and "do not dereference user-supplied pointers." In our approach, programmers write system-specific extensions that are linked into the compiler and check their code for errors. We demonstrate the approach's effectiveness by using it to find over 100 security errors in Linux and OpenBSD, over 50 of which have led to kernel patches. An unusual feature of our approach is the use of methods to automatically detect when we miss code actions that should be checked.

@inproceedings{citeulike:514565, abstract = {This paper shows how system-specific static analysis can find security errors that violate rules such as "integers from untrusted sources must be sanitized before use" and "do not dereference user-supplied pointers." In our approach, programmers write system-specific extensions that are linked into the compiler and check their code for errors. We demonstrate the approach's effectiveness by using it to find over 100 security errors in Linux and OpenBSD, over 50 of which have led to kernel patches. An unusual feature of our approach is the use of methods to automatically detect when we miss code actions that should be checked.}, author = {Ashcraft, K. and Engler, D.}, citeulike-article-id = {514565}, citeulike-linkout-0 = {http://dx.doi.org/10.1109/SECPRI.2002.1004368}, citeulike-linkout-1 = {http://ieeexplore.ieee.org/xpls/abs_all.jsp?arnumber=1004368}, doi = {10.1109/SECPRI.2002.1004368}, journal = {Security and Privacy, 2002. Proceedings. 2002 IEEE Symposium on}, keywords = {c, security}, pages = {143--159}, posted-at = {2007-11-07 14:33:39}, priority = {1}, title = {Using programmer-written compiler extensions to catch security holes}, url = {http://dx.doi.org/10.1109/SECPRI.2002.1004368}, year = {2002} }

RIS record

TY - CONF ID - citeulike:514565 L3 - citeulike-article-id:514565 N2 - This paper shows how system-specific static analysis can find security errors that violate rules such as "integers from untrusted sources must be sanitized before use" and "do not dereference user-supplied pointers." In our approach, programmers write system-specific extensions that are linked into the compiler and check their code for errors. We demonstrate the approach's effectiveness by using it to find over 100 security errors in Linux and OpenBSD, over 50 of which have led to kernel patches. An unusual feature of our approach is the use of methods to automatically detect when we miss code actions that should be checked. JF - Security and Privacy, 2002. Proceedings. 2002 IEEE Symposium on EP - 159 TI - Using programmer-written compiler extensions to catch security holes SP - 143 KW - c KW - security AU - Ashcraft, K AU - Engler, D PY - 2002/// UR - http://dx.doi.org/10.1109/SECPRI.2002.1004368 ER -

c	6
buffer_overflow	5
stack	5
language	4
buffer_overrun	4
stackless	4
security	4
compiler	3
cyclone	3
ccured	3
algol	2
gc	2
protothreads	1
protection	1
polymorphic	1
preemptive_threading	1
assembly	1
semantics	1
parser	1
executable_editing	1
memory_exploits	1
cache	1
design	1
memory	1
algorithms	1
cooperative_threading	1
generator	1
stackguard	1
antlr	1
call_stack	1
stackghost	1
hardware_security	1
cache_oblivious	1
stack_smashing	1
threads	1

Using programmer-written compiler extensions to catch security holes Export

Citation Format