A buffer overflow benchmark for software model checkers

ASE'07 - 2007 ACM/IEEE International Conference on Automated Software Engineering

Volumn , Issue , 2007, Pages 389-392

  Ku, Kelvin ^a   Hart, Thomas E ^a   Chechik, Marsha ^a   Lie, David ^a  

^a UNIVERSITY OF TORONTO   (Canada)

Author keywords

array bounds checking; benchmark; buffer overflow; model checking

Indexed keywords

ABSTRACTION-REFINEMENT; BENCHMARK SUITES; BUFFER OVERFLOWS; CODE FRAGMENTS; DEVICE DRIVER; MODEL CHECKER; OPEN SOURCE APPLICATION; SOFTWARE MODEL CHECKERS; SOFTWARE MODEL CHECKING;

BENCHMARKING; BUFFER STORAGE; COMPUTER SOFTWARE;

MODEL CHECKING;

EID: 56349117830     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1321631.1321691     Document Type: Conference Paper

References (18)

1. T. Ball and S. Rajamani. "The SLAM Toolkit". In Proc. CAV'01, volume 2102 of LNCS, pages 260-264, 2001.
2. S. Chaki and S. Hissam. "Certifying the Absence of Buffer Overflows". Tech. Report CMU/SEI-2006-TN-030, SEI, 2006.
3. E. Clarke, O. Grumberg, S. Jha, Y. Lu, and H. Veith. " Counterexample-Guided Abstraction Refinement". In Proc. CAV'00, volume 1855 of LNCS, pages 154-169, 2000.
4. E. Clarke, D. Kroening, and F. Lerda. "A Tool for Checking ANSI-C Programs". In Proc. TACAS'04, volume 2988 of LNCS, pages 168-176, 2004.
5. E. Clarke, D. Kroening, N. Sharygina, and K. Yorav. " SATABS: SAT-based Predicate Abstraction for ANSI-C ". In Proc. TACAS'05, volume 3440 of LNCS, pages 570-574, 2005.
6. CVE - Common Vulnerabilities and Exposures. http://cve.mitre.org/.
7. S. Graf and H. Saïdi. "Construction of Abstract State Graphs with PVS". In Proc. CAV'97, volume 1254 of LNCS, pages 72-83, 1997.
8. B. Hackett, M. Das, D. Wang, and Z. Yang. "Modular Checking for Buffer Overflows in the Large". In Proc. ICSE'06, pages 232-241, 2006.
9. T. Henzinger, R. Jhala, R. Majumdar, and G. Sutre. "Lazy Abstraction". In Proc. POPL'02, pages 58-70, 2002.
10. R. Jhala and K. McMillan. "Array Abstractions from Proofs". In Proc. CAV'07, volume 4590 of LNCS. Springer, 2007.
11. K. Kratkiewicz and R. Lippmann. "Using a Diagnostic Corpus of C Programs to Evaluate Buffer Overflow Detection by Static Analysis Tools". In Proc. BUGS'05, 2005.
12. D. Kroening, A. Groce, and E. Clarke. "Counterexample Guided Abstraction Refinement via Program Execution". In Proc. Int. Conf. on Formal Eng. Methods (ICFEM'04), volume 3308 of LNCS, pages 224-238, 2004.
13. D. Kroening and G. Weissenbacher. "Counterexamples with Loops for Predicate Abstraction". In Proc. CAV'06, volume 4144 of LNCS, pages 152-165, 2006.
14. W. Visser, K. Havelund, G. Brat, S. Park, and F. Lerda. "Model Checking Programs". Journal of Automated Software Engineering, 10(2), April 2003.
15. D. Wagner, J. S. Foster, E. A. Brewer, and A. Aiken. "A First Step towards Automated Detection of Buffer Overrun Vulnerabilities". In Proc. NDSS'00, pages 3-17, 2000.
16. J. Wilander and M. Kamkar. "A Comparison of Publicly Available Tools for Static Intrusion Prevention". In Proc. 7th Nordic Workshop on Secure IT Systems, pages 68-84, 2002.
17. Y. Xie, A. Chou, and D. R. Engler. "ARCHER: Using Symbolic, Path-Sensitive Analysis to Detect Memory Access Errors". In Proc. ESEC/FSE-11, pages 327-336, 2003.
18. M. Zitser, R. Lippmann, and T. Leek. "Testing Static Analysis Tools Using Exploitable Buffer Overflows from Open Source Code". In Proc. SIGSOFT'04/FSE-12, pages 97-106, 2004.