Academic Projects

IT University of Copenhagen

Course: Code Analysis

In this course, students receive background on code analysis and technology, in addition to rolling up their sleeves and trying out different tools in small projects. For this, they use CodeSonar as an example of a successful industry tool.

National University of Singapore

Course: Software Security

Purdue University

Research: Program Slicing Android Linux Kernel for Wakelock Bugs

Modern smartphones adopt an aggressive sleeping policy; they can go to sleep in the middle of some time-critical code sections if wakelocks are not properly manipulated by the programmer. Researchers at Purdue University are applying static analysis to the Android Linux kernel to look for such wakelock bugs.

San Jose State University

Course: Software Security Technologies

This course provides the fundamental concepts, methods, and tools used to design and implement software security technologies for constructing trustworthy centralized, distributed, or enterprise-wide software systems.

University of Central Florida

Course: Secure Software Development and Assurance

This course includes: threat modeling; secure code life-cycle; buffer overflows, race conditions, and format string problems; inputs and clients.

University of Illinois at Chicago

Research

The broad goal is to minimize run-time overheads without sacrificing protection. CodeSonar is being used to detect where use-after-free bugs occur, in order to more precisely identify where run-time checks are needed and where they are not. Codesonar will be used to analyze large and widely-used programs such as Firefox and other large programs with millions of lines of code, to detect where bugs occur, and then remove unnecessary checks.

Georgia Southern University

Course: Software Testing and QA

Essential concepts and technology for software systems quality assurance and testing – the course covers software testing and the quality assurance body of knowledge including theory, models and methods, as well as contemporary standards and tools.

Universita di Salerno

Course: Security and Safety

Static and Dynamic Analysis. Formal Verification of Correctness of Programs

University of New South Wales

Research

University of Southampton

Research

Program analysis and verification with a particular emphasis on concurrent programs &ndash building prototype tools to discover bugs in concurrent C programs.

University of Texas at San Antonio

Research

Research is focused on more advanced code searching techniques that consider features from system dependence graphs. Current experimenting is with a novel hybrid code indexing algorithm that considers both graph and textual features.