Programs are implemented in a variety of languages and contain serious vulnerabilities
which might be exploited to cause security breaches. These vulnerabilities have been …

The serious bugs and security vulnerabilities facilitated by C/C++'s lack of bounds checking
are well known, yet C and C++ remain in widespread use. Unfortunately, C's arbitrary …

We present a simple architectural mechanism called dynamic information flow tracking that
can significantly improve the security of computing systems with negligible performance …

Where do most vulnerabilities occur in software? Our Vulture tool automatically mines
existing vulnerability databases and version archives to map past vulnerabilities to …

Constrained optimization models are core tools in business, science, government, and the
military with applications including airline scheduling, control of petroleum refining …

(57) ABSTRACT A unified program analysis framework that facilitates the analysis of
complex multi-language Software systems, analy sis reuse, and analysis comparison, by …

The problem of enforcing correct usage of array and pointer references in C and C++
programs remains unsolved. The approach proposed by Jones and Kelly (extended by …

Mixed concrete and symbolic execution is an important technique for finding and
understanding software bugs, including security-relevant ones. However, existing symbolic …

Static analysis of programs in weakly typed languages such as C and C++ is generally not
sound because of possible memory errors due to dangling pointer references, uninitialized …

Memory-related errors, such as buffer overflows and dangling pointers, remain one of the
principal reasons for failures of C programs. As a result, a number of recent research efforts …