Numerical abstract domains are an important ingredient of modern static analyzers used for
verifying critical program properties (eg, absence of buffer overflow or memory safety) …

We present an overview of Clousot, our current tool to statically check CodeContracts.
CodeContracts enable a compiler and language-independent specification of Contracts …

Mixed concrete and symbolic execution is an important technique for finding and
understanding software bugs, including security-relevant ones. However, existing symbolic …

Born in the late 70s, Abstract Interpretation has proven an effective method to construct static
analyzers. It has led to successful program analysis tools routinely used in avionic …

We introduce FunArray, a parametric segmentation abstract domain functor for the fully
automatic and scalable analysis of array content properties. The functor enables a natural …

We study the problem of suggesting code repairs at design time, based on the warnings
issued by modular program verifiers. We introduce the concept of a verified repair, a change …

We construct novel thread-modular analyses that track relational information for potentially
overlap** clusters of global variables–given that they are protected by common mutexes …

In this study, we investigate the limits of the current state of the art AI system for detecting
buffer overflows and compare it with current static analysis tools. To do so, we developed a …

Specifying application interfaces (APIs) with information that goes beyond method argument
and return types is a long-standing quest of programming language researchers and …

Abstract interpretation is a theory of abstraction and constructive approximation of the
mathematical structures used in the formal description of complex or infinite systems and the …