Proposal Draft
Members: Dan Crowley, Raajiv Rekha, Kyle Ross
Project: Source Code Vulnerability Analysis Engine
Description:
- Combines several vulnerability analysis techniques
- Taint analysis
- Static code analysis
- Manual code review
- Identifies variables in code which can be tainted by user input
- Identifies known vulnerable code structures
- Presents only code portions relevant to a security code review
- Results in fast, relevant and efficient vulnerability analysis
page revision: 0, last edited: 17 Jun 2009 15:38