Quote: ESP checks very large C/C++ programs with a finite state machine of syntactic code patterns; most branches are irrelevant; e.g., security properties over a million lines with 25 false errors

Quotation Skeleton

Error detection via scalable program analysis (ESP) [ref] is similar to SLAM, except that it focuses on very … ESP ensures that the C or C++ program … a [finite-state machine] with syntactic code patterns. ESP is … [p. 98] We based ESP's algorithm on the insight … [In ESP] a conditional statement is relevant if an … This heuristic leads to a polynomial-time algorithm efficient … We've used ESP … to validate an OS kernel's security properties. … [ESP] checked all execution paths in a million-line … only 25 false errors.   Google-1   Google-2

Copyright clearance needed for quotation.

Related Topics

Topic: debugging by usage rules (41 items)
Group: security   (23 topics, 874 quotes)