OWASP 벤치마크의 보안약점 탐지 점수를 높이기 위한 정적 분석 기술 |
Gang, Dong-Ok
(파수닷컴)
Kim, Gyeong-Hwan (파수닷컴) Jin, Min-Sik (파수닷컴) Jeong, Yeong-Beom (파수닷컴) |
1 | W. Youden, "Index for rating diagnostic tests," Cancer, pp. 32-35, 1950. |
2 | H.-S. K. a. W. m. W. Erick M.Nystrom, "Bottom-up and top-down context-sensitive summary-based pointer analysis," In The proceedings of the 11th Annual International Static Analysis Symposium, Lecture Notes in Computer Science. Springer, 2004. |
3 | P. C. a. R. Cousot., "Abstract interpretation: A unified lattice model for static analysis of programs by construction or approximation of fixpoints," In Conference Record of Fourth ACM Symposium on Programming Languages (POPL'77), pages 238-252, Los Angeles, California, January 1977. |
4 | P. C. a. R. Cousot, "Systematic design of program analysis frameworks," In Conference Record of Sixth ACM Symposium on Programming Languages (POPL'79), pages 269-282, Los Angeles, California, January 1979. |
5 | L. A. Clarke, "A program testing system," In Proc. of the 1976 annual conference, pages 488-491, 1976. |
6 | J. C. King, "Symbolic execution and program testing," Commun. ACM, 19:385-394, July 1976. DOI |
7 | L. S. Bryant, "Modeling and verifying systems using a logic of counter arithmetic with lambda expressions and uninterpreted functions," Computer Aided Verification 2404/2002, 106-122., 2002. |
8 | R. G. a. M. L. S. R. Bodik, "Refining data flow information using infeasible paths," In FSE, pages 361-377. Springer-Verlag, 1997. |
9 | S. J. F. a. R. B. M. Sridharan, "Thin slicing," %1 In Conf. on Prog. Lang. Design and Impl., pages 112-122, ACM, 2007. |