A site devoted mostly to everything related to Information Technology under the sun - among other things.

Wednesday, August 10, 2016

LAVA: Large-Scale Automated Vulnerability Addition

In this joint study by New York University and MIT Lincoln Laboratory, and Northeastern University, defects are intentionally injected into programs. Next, commercial tools are used to discover them. The result has been that the commercial tools could only detect 1 to 2 % of the injected bugs. Please see below:


http://engineering.nyu.edu/press-releases/2016/07/06/building-better-computer-bug-finder


For details, access the paper here:


http://www.ieee-security.org/TC/SP2016/papers/0824a110.pdf

No comments:

About Me

My photo
I had been a senior software developer working for HP and GM. I am interested in intelligent and scientific computing. I am passionate about computers as enablers for human imagination. The contents of this site are not in any way, shape, or form endorsed, approved, or otherwise authorized by HP, its subsidiaries, or its officers and shareholders.

Blog Archive