We propose a novel fine-grained integration of pointer analysis with dynamic analysis, including dynamic symbolic execution. This is achieved via past-sensitive pointer analysis, an on-demand pointer analysis instantiated with an abstraction of the dynamic state on which it is invoked. We evaluate our technique in three application scenarios: chopped symbolic execution, symbolic pointer resolution, and write integrity testing. Our preliminary results show that the approach can have a significant impact in these scenarios, by effectively improving the precision of standard pointer analysis with only a modest performance overhead
One of the bottlenecks in the recent movement of hardware synthesis from behavioral C programs is th...
The size of today’s programs continues to grow, as does the number of bugs they contain. Testing alo...
Pointer analysis, as a fundamental research, is to identify the possible runtime values of a pointer...
Dynamic test generation consists of executing a program while gathering symbolic constraints on inpu...
Symbolic execution is a popular program analysis technique that allows seeking for bugs by reasoning...
This thesis introduces a novel technique for the automated analysis of compiled programs, which is f...
The examination and monitoring of binaries during runtime, referred to as dynamic binary analysis, i...
AbstractThe size of today’s programs continues to grow, as does the number of bugs they contain. Tes...
Symbolic execution is an effective technique for exploring paths ina program and reasoning about all...
We propose a new abstraction for pointer analysis that represents reads and writes to memory instead...
textThe last few years have seen a resurgence of interest in the use of symbolic execution--program ...
Symbolic execution is a powerful program analysis technique that systematically explores multiple pr...
Software model checkers quickly reach their limits when being applied to verifying pointer safety ...
textPointer analysis is a fundamental enabling technology for program analysis. By improving the sc...
Pointer analysis, a classic problem in software program analysis, has emerged as an important proble...
One of the bottlenecks in the recent movement of hardware synthesis from behavioral C programs is th...
The size of today’s programs continues to grow, as does the number of bugs they contain. Testing alo...
Pointer analysis, as a fundamental research, is to identify the possible runtime values of a pointer...
Dynamic test generation consists of executing a program while gathering symbolic constraints on inpu...
Symbolic execution is a popular program analysis technique that allows seeking for bugs by reasoning...
This thesis introduces a novel technique for the automated analysis of compiled programs, which is f...
The examination and monitoring of binaries during runtime, referred to as dynamic binary analysis, i...
AbstractThe size of today’s programs continues to grow, as does the number of bugs they contain. Tes...
Symbolic execution is an effective technique for exploring paths ina program and reasoning about all...
We propose a new abstraction for pointer analysis that represents reads and writes to memory instead...
textThe last few years have seen a resurgence of interest in the use of symbolic execution--program ...
Symbolic execution is a powerful program analysis technique that systematically explores multiple pr...
Software model checkers quickly reach their limits when being applied to verifying pointer safety ...
textPointer analysis is a fundamental enabling technology for program analysis. By improving the sc...
Pointer analysis, a classic problem in software program analysis, has emerged as an important proble...
One of the bottlenecks in the recent movement of hardware synthesis from behavioral C programs is th...
The size of today’s programs continues to grow, as does the number of bugs they contain. Testing alo...
Pointer analysis, as a fundamental research, is to identify the possible runtime values of a pointer...