Verification of CERT Secure Coding Rules: Case Studies.

Syrine Tlili,XiaoChun Yang,Rachid Hadjidj,Mourad Debbabi
DOI: https://doi.org/10.1007/978-3-642-05151-7_12
2009-01-01
Abstract:Growing security requirements for systems and applications have raised the stakes on software security verification techniques. Recently, model-checking is settling in the arena of software verification. It is effective in verifying high-level security properties related to software functionalities. In this paper, we present the experiments conducted with our security verification framework based on model-checking. We embedded a wide range of the CERT secure coding rules into our framework. Then, we verified real software packages against these rules for purpose of demonstrating the capability and the efficiency of our tool in detecting real errors.
What problem does this paper attempt to address?