Software Engineering Institute

Architecture Analysis and Design Language (AADL) is a foundation for creating model-based reliable systems. Its roots are in the safety community, specifically transportation engineering. The conditions for assuring safety and security often overlap, but they are not identical. As part of an investigation into using AADL for security applications, this paper describes a secure coding analysis of the PolyORB-HI-C runtime system used by C language code output from the Ocarina AADL code generator. The overall quality of the code is found to be high. However, several potential out-of-bounds stores were discovered, which opens up the possibility of buffer overflow attacks. The techniques for finding these