Presentation is loading. Please wait.

Presentation is loading. Please wait.

String Analysis for JavaScript Programs Using JSAI

Published byDella Johnston Modified over 5 years ago

Similar presentations

Presentation on theme: "String Analysis for JavaScript Programs Using JSAI"— Presentation transcript:

1 String Analysis for JavaScript Programs Using JSAI
Yves Engelmann Serena King Advisor: Lunjin Lu

2 Purpose of This Research
Design/implement domain of string properties on top of JSAI - an analysis engine that was developed at UCSB 

3 How does it fit in with The Security Theme?
An increased precision of string static analyzer will help prevent XSS, MFE, and SQLI attacks to JavaScript based programs.

4 What is Program Analysis
In general terms, program analysis is an automated analysis of program behavior Program analysis is about developing tools and algorithms that help analyze other programs Hint: Static Analysis A short history of static program Analysis Early high-level programming languages were implemented on very small and very slow machine. Compilers needed to generate executables that were extremely efficient in space and time. Compiler writers invented efficiency- increasing program transformations, wrongly called optimizing transformations. Transformations must not change the semantics of programs. Enabling conditions guaranteed semantics preservation. Enabling conditions were checked by static analysis of programs (data-flow analysis). Theoretical foundations of static program analysis---Kleene (1930s), Tarski(1955) .Gary Kildall(1972) clarified the lattice-theoretic foundation of data flow analysis. . Patrick Cousot(1974) established the relation to the programming language semantics. Source: Static Program Analysis for Verification – an Introduction -

5 Static Program Analysis
Analyzes the source code of a given program Dynamic Program Analysis: Analyzes the program while its running The difference between Static and Dynamic program analysis is that static analysis gives you more execution reasons but it’s less precise and Dynamic is more precise, but result are limited to observed executions. A typical static analysis question: Given source code of program P and desired property Q, does P exhibit Q in all possible executions? What does precision mean here?

6 Static Program Analysis
Static analyses are either: Unsound: May say program is safe even though it is unsafe Sound, but incomplete: May say program is unsafe even though is safe Non-terminating: Always gives correct answer when it terminates, but may run forever Many static analysis techniques are sound but incomplete.

7 Timeline Week Literature survey Week 3 – 6 Design/Implementation Week 6 Mid – Summer Presentation Week 7 – 9 Writing Paper

8 Design/Implementation
TOOLS TO BE USED Understand the current constant propagation domain FA Software Current JSAI Analyzer Eclipse IDE to modify Scala source code

Download ppt "String Analysis for JavaScript Programs Using JSAI"

Similar presentations

1 Verification by Model Checking. 2 Part 1 : Motivation.

1 Verification by Model Checking. 2 Part 1 : Motivation.
Dataflow Analysis for Datarace-Free Programs (ESOP 11) Arnab De Joint work with Deepak DSouza and Rupesh Nasre Indian Institute of Science, Bangalore.

Dataflow Analysis for Datarace-Free Programs (ESOP 11) Arnab De Joint work with Deepak DSouza and Rupesh Nasre Indian Institute of Science, Bangalore.
Runtime Techniques for Efficient and Reliable Program Execution Harry Xu CS 295 Winter 2012.

Runtime Techniques for Efficient and Reliable Program Execution Harry Xu CS 295 Winter 2012.
Verification and Validation

Verification and Validation
Course Outline Traditional Static Program Analysis Software Testing

Course Outline Traditional Static Program Analysis Software Testing
8. Code Generation. Generate executable code for a target machine that is a faithful representation of the semantics of the source code Depends not only.

8. Code Generation. Generate executable code for a target machine that is a faithful representation of the semantics of the source code Depends not only.
Current Techniques in Language-based Security David Walker COS 597B With slides stolen from: Steve Zdancewic University of Pennsylvania.

Current Techniques in Language-based Security David Walker COS 597B With slides stolen from: Steve Zdancewic University of Pennsylvania.
In Defense of Unsoundness Ben Livshits, Manu Sridharan, Yannis Smaragdakis, and Ondřej Lhoták.

In Defense of Unsoundness Ben Livshits, Manu Sridharan, Yannis Smaragdakis, and Ondřej Lhoták.
© Janice Regan 2004 1 Problem-Solving Process 1. State the Problem (Problem Specification) 2. Analyze the problem: outline solution requirements and design.

© Janice Regan Problem-Solving Process 1. State the Problem (Problem Specification) 2. Analyze the problem: outline solution requirements and design.
Sound and Precise Analysis of Web Applications for Injection Vulnerabilities Gary Wassermann Zhendong Su.

Sound and Precise Analysis of Web Applications for Injection Vulnerabilities Gary Wassermann Zhendong Su.
Program analysis Mooly Sagiv html://www.cs.tau.ac.il/~msagiv/courses/wcc06.html.

Program analysis Mooly Sagiv html://
Program analysis Mooly Sagiv html://www.cs.tau.ac.il/~msagiv/courses/wcc08.html.

Program analysis Mooly Sagiv html://
Programming Language Semantics Mooly SagivEran Yahav Schrirber 317Open space 03-640-760603-640-5358 html://www.cs.tau.ac.il/~msagiv/courses/sem03.html.

Programming Language Semantics Mooly SagivEran Yahav Schrirber 317Open space html://
Overview of program analysis Mooly Sagiv html://www.cs.tau.ac.il/~msagiv/courses/wcc05.html.

Overview of program analysis Mooly Sagiv html://
Semantics with Applications Mooly Sagiv Schrirber 317 03-640-7606 html://www.cs.tau.ac.il/~msagiv/courses/sem08.html Textbooks:Winskel The.

Semantics with Applications Mooly Sagiv Schrirber html:// Textbooks:Winskel The.
On the Correctness of Model Transformations Gabor Karsai ISIS/Vanderbilt University.

On the Correctness of Model Transformations Gabor Karsai ISIS/Vanderbilt University.
Describing Syntax and Semantics

Describing Syntax and Semantics
Foundations of Programming Languages – Course Overview Xinyu Feng Acknowledgments: some slides taken or adapted from lecture notes of Stanford CS242 https://courseware.stanford.edu/pg/courses/317431/

Foundations of Programming Languages – Course Overview Xinyu Feng Acknowledgments: some slides taken or adapted from lecture notes of Stanford CS242
Formal Methods 1. Software Engineering and Formal Methods  Every software engineering methodology is based on a recommended development process  proceeding.

Formal Methods 1. Software Engineering and Formal Methods  Every software engineering methodology is based on a recommended development process  proceeding.
CS527: (Advanced) Topics in Software Engineering Overview of Software Quality Assurance Tao Xie ©D. Marinov, T. Xie.

CS527: (Advanced) Topics in Software Engineering Overview of Software Quality Assurance Tao Xie ©D. Marinov, T. Xie.

Similar presentations

Ads by Google