Model Checking One Million Lines of C Code

Download Now
Provided by: UC AB
Topic: Security
Format: PDF
Implementation bugs in security-critical software are pervasive. Several authors have previously suggested model checking as a promising means to detect improper use of system interfaces and thereby detect a broad class of security vulnerabilities. In this paper, the authors report on their practical experience using MOPS, a tool for software model checking security-critical applications. As examples of security vulnerabilities that can be analyzed using model checking, they pick five important classes of vulnerabilities and show how to codify them as temporal safety properties, and then they describe the results of checking them on several significant unix applications using MOPS.
Download Now

Find By Topic