As-if Infinitely Ranged Integer Model

Abstract

Integer overflow and wraparound are a major cause of software vulnerabilities in the C and C++ programming languages. In this paper, we present the as-if infinitely ranged (AIR) integer model, which provides a largely automated mechanism for eliminating integer overflow and integer truncation. The AIR integer model either produces a value which is equivalent to a value that would have been obtained using infinitely ranged integers or results in a runtime constraint violation. Unlike previous integer models, AIR integers do not require precise traps, and consequently do not break or inhibit most existing optimizations.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jul 01, 2009
Accession Number
ADA512342

Entities

People

  • Alex Volkovitsky
  • David Keaton
  • David Svoboda
  • Robert C. Seacord
  • Thomas Plum
  • Timothy Wilson

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • C4I

DTIC Thesaurus Topics

  • C Programming Language
  • Compilers
  • Computations
  • Computer Programming
  • Computer Programs
  • Computers
  • Denial Of Service Attack
  • Department Of Defense
  • Detectors
  • Engineering
  • Guarantees
  • Language
  • Optimization
  • Programming Languages
  • Software Development
  • Standards
  • Truncation

Fields of Study

  • Computer science

Readers

  • Aerosol Science/Aerosol Physics
  • Mathematical Modeling and Probability Theory.
  • Operations Research