Eliminating bugs in real systems
Abstract/Contents
- Abstract
- Software is everywhere, and almost everywhere, software is broken. Some bugs just crash your printer; others hand an identity thief your bank account number; still others allow nation-states to spy on dissidents and persecute minorities. As software takes over our lives, bugs ossify and code gets older, more complicated, harder to reason about, and almost impossible to re-write from scratch. This thesis discusses how to make systems safer without requiring clean-slate re-writes: it presents systems that automatically find security bugs in large, existing, security-critical systems using techniques along the spectrum from lightweight bug finding the way to automated verification. These systems span the effort-to-payoff curve for checking and verification tools; they've found bugs in operating systems, runtime systems, and web browsers---including bugs with cash rewards (or bounties), and high-security, exploitable bugs with vulnerability designations (or CVEs)---and have verified a small portion of the Firefox browser.
Description
Type of resource | text |
---|---|
Form | electronic resource; remote; computer; online resource |
Extent | 1 online resource. |
Place | California |
Place | [Stanford, California] |
Publisher | [Stanford University] |
Copyright date | 2022; ©2022 |
Publication date | 2022; 2022 |
Issuance | monographic |
Language | English |
Creators/Contributors
Author | Brown, Madeleine Lucy Fraser |
---|---|
Degree supervisor | Engler, Dawson R |
Thesis advisor | Engler, Dawson R |
Thesis advisor | Boneh, Dan, 1969- |
Thesis advisor | Stefan, Deian |
Degree committee member | Boneh, Dan, 1969- |
Degree committee member | Stefan, Deian |
Associated with | Stanford University, Computer Science Department |
Subjects
Genre | Theses |
---|---|
Genre | Text |
Bibliographic information
Statement of responsibility | Fraser Brown. |
---|---|
Note | Submitted to the Computer Science Department. |
Thesis | Thesis Ph.D. Stanford University 2022. |
Location | https://purl.stanford.edu/nw345rn2853 |
Access conditions
- Copyright
- © 2022 by Madeleine Lucy Fraser Brown
- License
- This work is licensed under a Creative Commons Attribution Non Commercial 3.0 Unported license (CC BY-NC).
Also listed in
Loading usage metrics...