Detection of Security Vulnerabilities Induced by Integer Errors

Salim Yahia Kissi; Yassamine Seladji; Rabéa Ameur-Boulifa

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

Detection of Security Vulnerabilities Induced by Integer Errors

Topics: Formal Methods; Testing and Testability

In Proceedings of the 16th International Conference on Software Technologies ICSOFT - Volume 1, 177-184, 2021

Authors: Salim Yahia Kissi ¹ ; Yassamine Seladji ¹ and Rabéa Ameur-Boulifa ²

Affiliations: ¹ LRIT, University of Abou Bekr Belkaid, Tlemcen, Algeria ; ² LTCI, Télécom Paris, Institut Polytechnique de Paris, France

Keyword(s): Security Vulnerability, Memory Errors, Software Analysis, Satisfiability Analysis, Integer Overflow.

Abstract: Sometimes computing platforms, e.g. storage device, compilers, operating systems used to execute software programs make them misbehave, this type of issues could be exploited by attackers to access sensitive data and compromise the system. This paper presents an automatable approach for detecting such security vulnerabilities due to improper execution environment. Specifically, the advocated approach targets the detection of security vulnerabilities in the software caused by memory overflows such as integer overflow. Based on analysis of the source code and by using a knowledge base gathering common execution platform issues and known restrictions, the paper proposes a framework able to infer the required assertions, without manual code annotations and rewriting, for generating logical formulas that can be used to reveal potential code weaknesses.

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 8.217.144.104

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Kissi, S. Y., Seladji, Y. and Ameur-Boulifa, R. (2021). Detection of Security Vulnerabilities Induced by Integer Errors. In Proceedings of the 16th International Conference on Software Technologies - ICSOFT; ISBN 978-989-758-523-4; ISSN 2184-2833, SciTePress, pages 177-184. DOI: 10.5220/0010551301770184

@conference{icsoft21,
author={Salim Yahia Kissi and Yassamine Seladji and Rabéa Ameur{-}Boulifa},
title={Detection of Security Vulnerabilities Induced by Integer Errors},
booktitle={Proceedings of the 16th International Conference on Software Technologies - ICSOFT},
year={2021},
pages={177-184},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010551301770184},
isbn={978-989-758-523-4},
issn={2184-2833},
}

TY - CONF

JO - Proceedings of the 16th International Conference on Software Technologies - ICSOFT
TI - Detection of Security Vulnerabilities Induced by Integer Errors
SN - 978-989-758-523-4
IS - 2184-2833
AU - Kissi, S.
AU - Seladji, Y.
AU - Ameur-Boulifa, R.
PY - 2021
SP - 177
EP - 184
DO - 10.5220/0010551301770184
PB - SciTePress