Vulnerability Discovery Poster (SEI 2015 Research Review)

October 2015 • Poster

Edward J. Schwartz

A poster for the 2015 Research Review presentation on discovering vulnerabilities in software.

Publisher:

Software Engineering Institute

Abstract

Current vulnerability discovery techniques are so effective that they routinely find hundreds of thousands of crashers, which crash the target program. We created a new methodology for precisely and naturally defining vulnerabilities through the creation of patches. We use our methodology to study important questions regarding the practice of fuzzing.