The pointer assertion logic engine
A Møller, MI Schwartzbach - ACM SIGPLAN Notices, 2001 - dl.acm.org
We present a new framework for verifying partial specifications of programs in order to catch
type and memory errors and check data structure invariants. Our technique can verify a large …
type and memory errors and check data structure invariants. Our technique can verify a large …
TVLA: A system for implementing static analyses
T Lev-Ami, M Sagiv - International Static Analysis Symposium, 2000 - Springer
Abstract We present TVLA (Three-Valued-Logic Analyzer). TVLA is a “YACC”-like framework
for automatically constructing static-analysis algorithms from an operational semantics …
for automatically constructing static-analysis algorithms from an operational semantics …
[图书][B] Mona version 1.4: User manual
N Klarlund, A Møller - 2001 - brics.dk
It has been known since 1960 that the class of regular languages1 is linked to decidability
questions in formal logics. In particular, WS1S (Weak monadic Second-order theory of 1 …
questions in formal logics. In particular, WS1S (Weak monadic Second-order theory of 1 …
Automata-based symbolic string analysis for vulnerability detection
Verifying string manipulating programs is a crucial problem in computer security. String
operations are used extensively within web applications to manipulate user input, and their …
operations are used extensively within web applications to manipulate user input, and their …
MONA implementation secrets
N Klarlund, A Møller… - International Journal of …, 2002 - World Scientific
The MONA tool provides an implementation of automaton-based decision procedures for the
logics WS1S and WS2S. It has been used for numerous applications, and it is remarkably …
logics WS1S and WS2S. It has been used for numerous applications, and it is remarkably …
Symbolic string verification: An automata-based approach
We present an automata-based approach for the verification of string operations in PHP
programs based on symbolic string analysis. String analysis is a static analysis technique …
programs based on symbolic string analysis. String analysis is a static analysis technique …
Abstract regular tree model checking of complex dynamic data structures
A Bouajjani, P Habermehl, A Rogalewicz… - Static Analysis: 13th …, 2006 - Springer
We consider the verification of non-recursive C programs manipulating dynamic linked data
structures with possibly several next pointer selectors and with finite domain non-pointer …
structures with possibly several next pointer selectors and with finite domain non-pointer …
Mona & Fido: The logic-automaton connection in practice
N Klarlund - International Workshop on Computer Science Logic, 1997 - Springer
We discuss in this paper how connections, discovered almost forty years ago, between
logics and automata can be used in practice. For such logics expressing regular sets, we …
logics and automata can be used in practice. For such logics expressing regular sets, we …
Locating matches of tree patterns in forests
A Neumann, H Seidl - … of Software Technology and Theoretical Computer …, 1998 - Springer
We deal with matching and locating of patterns in forests of variable arity. A pattern consists
of a structural and a contextual condition for subtrees of a forest, both of which are given as …
of a structural and a contextual condition for subtrees of a forest, both of which are given as …
Semantic differential repair for input validation and sanitization
Correct validation and sanitization of user input is crucial in web applications for avoiding
security vulnerabilities and erroneous application behavior. We present an automated …
security vulnerabilities and erroneous application behavior. We present an automated …