Hybrid Inlining: A Framework for Compositional and Context-Sensitive Static Analysis
Context-sensitivity is essential for achieving good precision in inter-procedural static
analysis. To be context-sensitive, top-down analysis needs to fully inline all the statements in …
analysis. To be context-sensitive, top-down analysis needs to fully inline all the statements in …
Scalable and incremental software bug detection
S McPeak, CH Gros, MK Ramanathan - … of the 2013 9th Joint Meeting on …, 2013 - dl.acm.org
An important, but often neglected, goal of static analysis for detecting bugs is the ability to
show defects to the programmer quickly. Unfortunately, existing static analysis tools scale …
show defects to the programmer quickly. Unfortunately, existing static analysis tools scale …
Chianina: An evolving graph system for flow-and context-sensitive analyses of million lines of C code
Sophisticated static analysis techniques often have complicated implementations, much of
which provides logic for tuning and scaling rather than basic analysis functionalities. This …
which provides logic for tuning and scaling rather than basic analysis functionalities. This …
Hybrid top-down and bottom-up interprocedural analysis
Interprocedural static analyses are broadly classified into top-down and bottom-up,
depending upon how they compute, instantiate, and reuse procedure summaries. Both kinds …
depending upon how they compute, instantiate, and reuse procedure summaries. Both kinds …
Toward full elasticity in distributed static analysis: The case of callgraph analysis
D Garbervetsky, E Zoppi, B Livshits - Proceedings of the 2017 11th Joint …, 2017 - dl.acm.org
In this paper we present the design and implementation of a distributed, whole-program
static analysis framework that is designed to scale with the size of the input. Our approach is …
static analysis framework that is designed to scale with the size of the input. Our approach is …
Input splitting for cloud-based static application security testing platforms
As software development teams adopt DevSecOps practices, application security is
increasingly the responsibility of development teams, who are required to set up their own …
increasingly the responsibility of development teams, who are required to set up their own …
AbsIntIO: Towards Showing the Absence of Integer Overflows in Binaries using Abstract Interpretation
A Küchler, L Wenning, F Wendland - Proceedings of the 2023 ACM Asia …, 2023 - dl.acm.org
In the past years, the CWE-190 integer overflow led to many vulnerabilities. Program
verification techniques such as Abstract Interpretation can show that no such bug is present …
verification techniques such as Abstract Interpretation can show that no such bug is present …
Progress in parallelization of static program analysis
陆申明, 左志强, 王林章 - Journal of Software, 2020 - jos.org.cn
静态程序分析发展至今, 已在多个方面取得了长足的进步, 应用于软件开发的众多方面.
但对现代大规模复杂软件系统 (如千万行代码规模的 Linux 操作系统, 分布式大数据处理系统 …
但对现代大规模复杂软件系统 (如千万行代码规模的 Linux 操作系统, 分布式大数据处理系统 …
Pipelining bottom-up data flow analysis
Bottom-up program analysis has been traditionally easy to parallelize because functions
without caller-callee relations can be analyzed independently. However, such function-level …
without caller-callee relations can be analyzed independently. However, such function-level …
Systemizing interprocedural static analysis of large-scale systems code with Graspan
There is more than a decade-long history of using static analysis to find bugs in systems
such as Linux. Most of the existing static analyses developed for these systems are simple …
such as Linux. Most of the existing static analyses developed for these systems are simple …