Practical Static Analysis for Inference of Security-Related Program Properties

Free registration required

Executive Summary

The authors present a static analysis framework for inference of security-related program properties. Within this framework the authors design and implement ownership, immutability and information flow inference analyses for Java. They perform empirical investigation on a set of Java components, and on a set of established security benchmarks. The results indicate that the analyses are practical and precise, and therefore can be integrated in program comprehension tools that support reasoning about software security and software quality.

  • Format: PDF
  • Size: 140.6 KB