Dan Tsafrir, David Wagner, Dilma Da Silva
The file-system API of contemporary systems makes programs vulnerable to TOCTTOU (timeof-check-to-time-of-use) race conditions. Existing solutions either help users to detect these problems (by...
C++ Dynamic Cast in Autonomous Space Systems (2009)
Damian Dechev, Rabi Mahapatra, Bjarne Stroustrup, David Wagner
The dynamic cast operation allows flexibility in the design and use of data management facilities in objectoriented programs. Dynamic cast has an important role in the implementation of the Data...
A first step towards automated detection of buffer overrun vulnerabilities (2000)
David Wagner, Jeffrey S. Foster, Eric A. Brewer, Alexander Aiken
We describe a new technique for finding potential buffer overrun vulnerabilities in security-critical C code. The key to success is to use static analysis: we formulate detection of buffer overruns...