Sciweavers

IANDC
2008

Rule-based static analysis of network protocol implementations

13 years 11 months ago
Rule-based static analysis of network protocol implementations
Today's software systems communicate over the Internet using standard protocols that have been heavily scrutinized, providing some assurance of resistance to malicious attacks and general robustness. However, the software that implements those protocols may still contain mistakes, and an incorrect implementation could lead to vulnerabilities even in the most well-understood protocol. The goal of this work is to close this gap by introducing a new technique for checking that a C implementation of a protocol matches its description in an RFC or similar standards document. We present a static (compile-time) source code analysis tool called Pistachio that checks C code against a rule-based specification of its behavior. Rules describe what should happen during each round of communication, and can be used to enforce constraints on ordering of operations and on data values. Our analysis is not guaranteed sound due to some heuristic approximations it makes, but has a low false negative ...
Octavian Udrea, Cristian Lumezanu, Jeffrey S. Fost
Added 10 Dec 2010
Updated 10 Dec 2010
Type Journal
Year 2008
Where IANDC
Authors Octavian Udrea, Cristian Lumezanu, Jeffrey S. Foster
Comments (0)