Security Research: Program Analysis Meets Security

Security Research: Program Analysis Meets Security

Padmanabhan Krishnan

30 August 2023

In this paper we present the key features of some of the security analysis tools developed at Oracle, Labs. These include Parfait, a static analyser, Affogato a dynamic analysis based on run-time instrumentation of Node.js applications and Gelato a dynamic analysis tool that inspects only the client-side code written in JavaScript. We show the how these tools can be integrated at different phases of the software development life-cycle. This paper is based on the presentation at the ICTAC school in 2021.


Venue : ICTAC 2021

File Name : paper.pdf