Static Security Analysis for Open Source Software

Abstract

The goal of the project, Static Security Analysis for Open Source Software", was to explore technologies to improve the security of software by helping to automate security analysis. The project successfully improved upon the best published analysis techniques and made several releases publicly available as open source software. The analysis techniques developed under this effort reduce both false positives and false negatives compared to previous techniques. Additionally, the tools developed are highly scalable and extensible. Some of these tools were adopted by other projects within the DARPA Composable High Assurance Trusted Software Program.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Apr 01, 2004
Accession Number
ADA422592

Entities

People

  • John Viega

Tags

DTIC Thesaurus Topics

  • Air Force
  • Air Force Research Laboratories
  • Algorithms
  • Auditing
  • Basic Programming Language
  • Business Administration
  • Computer Programming
  • Computer Programs
  • Contracts
  • Graphical User Interface
  • Language
  • Military Research
  • Models
  • Open Source Software
  • Programming Languages
  • Security
  • Websites

Fields of Study

  • Computer science
  • Engineering

Readers

  • Cybersecurity.
  • Software Engineering.