A SPIN-based approach for detecting vulnerabilities in С~programs

N. G. Kushik; A. Mammar; A. Cavalli; N. V. Evtushenko; W. Jimenez; E. Montes de Oca

Geodesic

Parcourir par

A SPIN-based approach for detecting vulnerabilities in С~programs

N. G. Kushik ; A. Mammar ; A. Cavalli ; N. V. Evtushenko ; W. Jimenez ; E. Montes de Oca

Modelirovanie i analiz informacionnyh sistem, Tome 18 (2011) no. 4, pp. 131-143

Voir la notice de l'article provenant de la source Math-Net.Ru

Résumé

The C language is widely used for developing tools in various application areas, and a number of C software tools are used for critical systems, such as medicine, transport, etc. Correspondingly, the security of such programs should be thoroughly tested, i.e., it is important to develop techniques for detecting vulnerabilities in C programs. In this paper we present an approach for dynamic detection of software vulnerabilities using the SPIN model checker. We discuss how this approach can be implemented in order to detect automatically C code vulnerabilities and illustrate a proposed technique for a number of C programs which are widely used in a number of applications.

Keywords: C Program, vulnerability, C language, model checking, SPIN.

@article{MAIS_2011_18_4_a11,
     author = {N. G. Kushik and A. Mammar and A. Cavalli and N. V. Evtushenko and W. Jimenez and E. Montes de Oca},
     title = {A {SPIN-based} approach for detecting vulnerabilities in {{\CYRS}~programs}},
     journal = {Modelirovanie i analiz informacionnyh sistem},
     pages = {131--143},
     publisher = {mathdoc},
     volume = {18},
     number = {4},
     year = {2011},
     language = {ru},
     url = {http://geodesic.mathdoc.fr/item/MAIS_2011_18_4_a11/}
}

TY  - JOUR
AU  - N. G. Kushik
AU  - A. Mammar
AU  - A. Cavalli
AU  - N. V. Evtushenko
AU  - W. Jimenez
AU  - E. Montes de Oca
TI  - A SPIN-based approach for detecting vulnerabilities in С~programs
JO  - Modelirovanie i analiz informacionnyh sistem
PY  - 2011
SP  - 131
EP  - 143
VL  - 18
IS  - 4
PB  - mathdoc
UR  - http://geodesic.mathdoc.fr/item/MAIS_2011_18_4_a11/
LA  - ru
ID  - MAIS_2011_18_4_a11
ER  -

%0 Journal Article
%A N. G. Kushik
%A A. Mammar
%A A. Cavalli
%A N. V. Evtushenko
%A W. Jimenez
%A E. Montes de Oca
%T A SPIN-based approach for detecting vulnerabilities in С~programs
%J Modelirovanie i analiz informacionnyh sistem
%D 2011
%P 131-143
%V 18
%N 4
%I mathdoc
%U http://geodesic.mathdoc.fr/item/MAIS_2011_18_4_a11/
%G ru
%F MAIS_2011_18_4_a11

N. G. Kushik; A. Mammar; A. Cavalli; N. V. Evtushenko; W. Jimenez; E. Montes de Oca. A SPIN-based approach for detecting vulnerabilities in С~programs. Modelirovanie i analiz informacionnyh sistem, Tome 18 (2011) no. 4, pp. 131-143. http://geodesic.mathdoc.fr/item/MAIS_2011_18_4_a11/