nesCheck

nesCheck1.

  • Statically find all provable memory bugs and report them as errors;
  • Statically find all potentially unsafe memory accesses, determine and exclude those that will never result in a memory corruption in a conservative way; report the remaining vulnerabilities as warnings;
  • Dynamically instrument all remaining vulnerable location with runtime checks, and catch all memory errors at runtime.

Related text with sil:

Similar to CCured, nesCheck leverages more extensive static analysis and tailored runtime checks for wireless sensor network system (TinyOS)

Static Analysis


  1. nesCheck. AsiaCCS, 2017. ↩
Created Aug 14, 2019 // Last Updated Oct 12, 2019

If you could revise
the fundmental principles of
computer system design
to improve security...

... what would you change?