V
V. Benjamin Livshits
Researcher at Stanford University
Publications - 5
Citations - 1083
V. Benjamin Livshits is an academic researcher from Stanford University. The author has contributed to research in topics: Pointer (computer programming) & Alias. The author has an hindex of 5, co-authored 5 publications receiving 1037 citations.
Papers
More filters
Proceedings Article
Finding security vulnerabilities in java applications with static analysis
TL;DR: This paper proposes a static analysis technique for detecting many recently discovered application vulnerabilities such as SQL injections, cross-site scripting, and HTTP splitting attacks based on a scalable and precise points-to analysis.
Proceedings ArticleDOI
Context-sensitive program analysis as database queries
Monica S. Lam,John Whaley,V. Benjamin Livshits,Michael C. Martin,Dzintars Avots,Michael Carbin,Christopher Unkel +6 more
TL;DR: A new framework, based on the concept ofuctive databases, for context-sensitive program analysis, and a language called PQL that makes a subset of Datalogqueries more intuitive to define to make developing application-specific analyses easy for programmers.
Proceedings ArticleDOI
Tracking pointers with path and context sensitivity for bug detection in C programs
TL;DR: A hybrid pointer analysis that tracks actively manipulated pointers held in local variables and parameters accurately with path and context sensitivity and handles pointers stored in recursive data structures less precisely but efficiently is proposed.
Proceedings ArticleDOI
Improving software security with a C pointer analysis
TL;DR: This paper presents a context-sensitive, inclusion-based, field-sensitive points-to analysis for C, which is used to detect and prevent program security vulnerabilities, and proposes an optimistic analysis that assumes a more restricted C semantics reflecting common C usage in order to increase the precision of the analysis.
Turning Eclipse Against Itself: Finding Bugs in Eclipse Code Using Lightweight Static Analysis
TL;DR: Some common error patterns in Eclipse code are described and Checklipse, a lightweight analysis tool for finding these errors is proposed, which is implemented as an Eclipse plugin and leverages Eclipse’s JDT APIs to analyze Java code.