Abstract. Most common vulnerabilities in Web applications are due to string manipulation errors in input validation and sanitization code. String constraint solvers are essential components of program analysis techniques for detecting and repairing vulnerabilities that are due to string manipulation errors. For quantitative and probabilistic program analyses, checking the satisfiability of a constraint is not sufficient, and it is necessary to count the number of solutions. In this paper, we present a constraint solver that, given a string constraint, 1) constructs an automa-ton that accepts all solutions that satisfy the constraint, 2) generates a function that, given a length bound, gives the total number of solutions within that bound. O...
Artículo de publicación ISIWe study the fundamental issue of decidability of satisfiability over str...
String constraint solving refers to solving combinatorial problems involving constraints over string...
Abstract. Model checking is a successful technique for automatic pro-gram verification. We show that...
Most common vulnerabilities in modern software applications are due to errors in string manipulatio...
As an important extension of symbolic execution (SE), probabilistic symbolic execution (PSE) compute...
Model counting is the problem of determining the number of so-lutions that satisfy a given set of co...
We present a new algorithm for model counting of a class of string constraints. In addition to the c...
Symbolic execution [4] is a popular program analysis technique which executes programs on unspecifie...
Verifying string manipulating programs is a crucial problem in computer security. String operations ...
String analysis is the problem of reasoning about how strings are manipulated by a program. It has n...
Software testing is an integral part of the software development process. To test certain parts of s...
Abstract. There has been significant recent interest in automated rea-soning techniques, in particul...
Abstract Constraints on strings of unknown length occur in a wide variety of real-world problems, su...
We study the fundamental issue of decidability of satisfiability over string logics with concatenati...
String constraint solving is an important emerging field, given the ubiquity of strings over differe...
Artículo de publicación ISIWe study the fundamental issue of decidability of satisfiability over str...
String constraint solving refers to solving combinatorial problems involving constraints over string...
Abstract. Model checking is a successful technique for automatic pro-gram verification. We show that...
Most common vulnerabilities in modern software applications are due to errors in string manipulatio...
As an important extension of symbolic execution (SE), probabilistic symbolic execution (PSE) compute...
Model counting is the problem of determining the number of so-lutions that satisfy a given set of co...
We present a new algorithm for model counting of a class of string constraints. In addition to the c...
Symbolic execution [4] is a popular program analysis technique which executes programs on unspecifie...
Verifying string manipulating programs is a crucial problem in computer security. String operations ...
String analysis is the problem of reasoning about how strings are manipulated by a program. It has n...
Software testing is an integral part of the software development process. To test certain parts of s...
Abstract. There has been significant recent interest in automated rea-soning techniques, in particul...
Abstract Constraints on strings of unknown length occur in a wide variety of real-world problems, su...
We study the fundamental issue of decidability of satisfiability over string logics with concatenati...
String constraint solving is an important emerging field, given the ubiquity of strings over differe...
Artículo de publicación ISIWe study the fundamental issue of decidability of satisfiability over str...
String constraint solving refers to solving combinatorial problems involving constraints over string...
Abstract. Model checking is a successful technique for automatic pro-gram verification. We show that...