Automatic Detection of Vulnerable Variables for CTL Properties of Programs

11 pages•Published: May 26, 2024

Naïm Moussaoui Remil, Caterina Urban and Antoine Miné

Abstract

We present our tool FuncTion-V for the automatic identification of the minimal sets of program variables that an attacker can control to ensure an undesirable program property. FuncTion-V supports program properties expressed in Computation Tree Logic (CTL), and builds upon an abstract interpretation-based static analysis for CTL properties that we extend with an abstraction refinement process. We showcase our tool on benchmarks collected from the literature and SV-COMP 2023.

Keyphrases: abstract interpretation, ctl, program verification, security, static analysis

In: Nikolaj Bjørner, Marijn Heule and Andrei Voronkov (editors). Proceedings of 25th Conference on Logic for Programming, Artificial Intelligence and Reasoning, vol 100, pages 116-126.

Links:	https://easychair.org/publications/paper/n5Rq
	https://doi.org/10.29007/dnpx

BibTeX entry

@inproceedings{LPAR2024:Automatic_Detection_Vulnerable_Variables,
  author    = {Naïm Moussaoui Remil and Caterina Urban and Antoine Miné},
  title     = {Automatic Detection of Vulnerable Variables for CTL Properties of Programs},
  booktitle = {Proceedings of 25th Conference on Logic for Programming, Artificial Intelligence and Reasoning},
  editor    = {Nikolaj Bjørner and Marijn Heule and Andrei Voronkov},
  series    = {EPiC Series in Computing},
  volume    = {100},
  publisher = {EasyChair},
  bibsource = {EasyChair, https://easychair.org},
  issn      = {2398-7340},
  url       = {/publications/paper/n5Rq},
  doi       = {10.29007/dnpx},
  pages     = {116-126},
  year      = {2024}}

Download PDF Open PDF in browser