Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

Javascript is currently disabled for your browser. For an optimal search experience, please enable javascript.

Advanced Search

Basic Search

Content Type

Topics

Publication Date

Showing 1 - 8 of 8 results for the Author - david keaton Secure Coding

Technical Report | June 2008 - Technical Report Evaluation of CERT Secure Coding Rules through Integration ... By Stephen Dewhurst, Chad Dougherty, Yurie Ito, David Keaton, Dan Saks, Robert C. Seacord, David Svoboda, Chris Taschner, Kazuya Togashi (JPCERT/CC)

In this report, the authors describe a study to evaluate CERT Secure Coding Standards and source code analysis tools in commercial software projects.

Technical Note | July 2014 - Technical Note Performance of Compiler-Assisted Memory Safety Checking By David Keaton, Robert C. Seacord

This technical note describes the criteria for deploying a compiler-based memory safety checking tool and the performance that can be achieved with two such tools whose source code is freely available.

Technical Note | July 2009 - Technical Note As-if Infinitely Ranged Integer Model By David Keaton, Thomas Plum (Plum Hall - Inc.), Robert C. Seacord, David Svoboda, Alex Volkovitsky, Timothy Wilson

In this report, the authors present the as-if infinitely ranged (AIR) integer model, which eliminates integer overflow and integer truncation in C and C++ code.

Technical Note | April 2010 - Technical Note As-If Infinitely Ranged Integer Model, Second Edition By Roger Dannenberg (School of Computer Science - Carnegie Mellon University), Will Dormann, David Keaton, Thomas Plum (Plum Hall - Inc.), Robert C. Seacord, David Svoboda, Alex Volkovitsky, Timothy Wilson

In this report, the authors present the as-if infinitely ranged (AIR) integer model, a mechanism for eliminating integral exceptional conditions.

Presentation | May 2015 - Presentation Empirical Evaluation of API Usability and Security By Samuel M. Weber, Brad Myers, Forrest Shull, Robert C. Seacord, Michael Coblenz (Carnegie Mellon School of Computer Science), Joshua Sunshine (Institute for Software Research), David Keaton

In this presentation, the authors describe their work to develop and test API design principles.

Presentation | November 2010 - Presentation As-If Infinitely Ranged Integer Model By Roger Dannenberg (School of Computer Science - Carnegie Mellon University), Thomas Plum (Plum Hall - Inc.), Will Dormann, David Keaton, Robert C. Seacord, David Svoboda, Alex Volkovitsky, Timothy Wilson

This ISSRE 2010 paper describes the AIR Integer model for eliminating vulnerabilities resulting from integer overflow, truncation, and unanticipated wrapping.

Poster | May 2015 - Poster TWC: Small: Empirical Evaluation of the Usability and Security ... By Brad Myers, Samuel M. Weber, Robert C. Seacord, Michael Coblenz (Carnegie Mellon School of Computer Science), David Keaton, Forrest Shull, Joshua Sunshine (Institute for Software Research), Robert Schiela

In this poster, the authors analyze the usability of application programming interface design.

White Paper | February 2010 - White Paper Instrumented Fuzz Testing Using AIR Integers (Whitepaper) By Roger Dannenberg (School of Computer Science - Carnegie Mellon University), Will Dormann, David Keaton, Robert C. Seacord, Timothy Wilson, Thomas Plum (Plum Hall - Inc.)

In this paper, the authors present the as-if infinitely ranged (AIR) integer model, which provides a mechanism for eliminating integral exceptional conditions.