Mailing List Archives

Authenticated access

 		[Computer Systems Lab]

[← Prev[Date]  [Next →] [← Prev[Thread]  [Next →]

[pl-seminar] Fwd: Re: PL seminar

Date: Fri, 08 May 2015 11:45:42 -0500
From: Thomas Reps <reps@xxxxxxxxxxx>
Subject: [pl-seminar] Fwd: Re: PL seminar
Evan,

Let's do it Monday at 4 in 3310 CS. We will only have the room for 1 hour, but we can adjourn elsewhere for comments if necessary.

Tom


-------- Forwarded Message --------
Subject: Re: PL seminar
Date: Fri, 08 May 2015 11:14:41 -0500
From: Evan Driscoll <edriscoll@xxxxxxxxxxxxxx>
To: Thomas Reps <reps@xxxxxxxxxxx> 


n 5/8/2015 10:51 AM, Evan Driscoll wrote:
> Hi Tom,
>
> I'm prepping a talk for ICSE. Alexey and I think it would be a good 
> idea to give a seminar/practice talk at UW. It would have to be Monday 
> or Tuesday of next week.
Also, not Tuesday morning, not that it seems like a likely time anyway.

Evan


> (Otherwise it would have to wait until after I get back; would still 
> be potentially interesting but wouldn't be much of a practice in that 
> case. :-))
>
> Would that work? Can you set it up? Info for the paper is below.
>
> Evan
>
>
> Data-Delineation in Software Binaries and its Application to 
> Buffer-Overrun Discovery
> Denis Gopan, Evan Driscoll, Ducson Nguyen, Dimitri Naydich, Alexey 
> Loginov and David Melski
>
> AbstractâDetecting memory-safety violations in binaries is complicated 
> by the lack of knowledge of the intended data layout, i.e., the 
> locations and sizes of objects. We present lightweight, static, 
> heuristic analyses for recovering the intended layout of data in a 
> stripped binary. Comparison against DWARF
> debugging information shows high precision and recall rates for 
> inferring source-level object boundaries. On a collection of 
> benchmarks, our analysis eliminates a third to a half of incorrect 
> object boundaries identified by an IDA Pro-inspired heuristic, while 
> retaining nearly all valid object boundaries.
>
> In addition to measuring their accuracy directly, we evaluate the 
> effect of using the recovered data for improving the precision of 
> static buffer-overrun detection in the defect-detection tool 
> CodeSonar/x86. We demonstrate that CodeSonarâs false-positive rate 
> drops by about 80% across our internal evaluation suite for the tool, 
> while our approximation of CodeSonarâs recall only degrades about 25%.
>



-- 
Thomas Reps
J. Barkley Rosser Professor & Rajiv and Ritu Batra Chair
Computer Sciences Department
University of Wisconsin
1210 West Dayton Street
Madison, WI 53706
USA
<http://www.cs.wisc.edu/~reps>
(608) 262-2091 (direct)
(608) 262-1204 (secretary)


[← Prev in Thread] Current Thread [Next in Thread→]
  • [pl-seminar] Fwd: Re: PL seminar, Thomas Reps <=
Previous by Date:  [pl-seminar] Fwd: Doodle poll for pl-reading time, Tushar Sharma
Next by Date:  [pl-seminar] Reminder: PL Seminar talk in 10 minutes in 3310 CS, Thomas Reps
Previous by Thread:  [pl-seminar] Fwd: Doodle poll for pl-reading time, Tushar Sharma
Next by Thread:  [pl-seminar] karu talk today on open-source GPUs, Aws Albarghouthi
Indexes:  [Date] [Thread]