[web]
CWE
/ Common Weakness Enumeration
/ http://cwe.mitre.org/
[web]
/ NIST
/ https://samate.nist.gov/
[other]
SAMATE
/ Juliet Test Suite v1.2 for C/C++ User Guide
/ National Security Agency
[web]
/ SecurityPrism
/ http://www.gtone.co.kr/kr/securitystatic-analysis-tools.php
[journal]
Hyun-Joon Kwon
/ 2010
/ Developing An Automatic Tool for Static Detection of Software Security Vulnerabilities
/ KIISE
28(2)
: 37~40
[confproc]
Hyunha Kim
/ 2009
/ Rule-based Source-code Analysis for Detection of Security Vulnerability
/ WISA2009:The 10th International Workshop on Information Security Applications
: ~
[web]
/ Fortify Static Code Analyzer
/ https://saas.hpe.com/en-us/software/sca
[book]
Alfred V. Aho
/ 1986
/ Compilers: Principled, Techniques, and Tools
/ Addison Wesley
[book]
Steven S. Muchnick
/ 1997
/ Advanced Compiler Design and Implementation
/ Morgan Kaufmann
: 169~265
[journal]
C. Cadar
/ 2013
/ Symbolic execution for software testing: three decades later
/ Communications of the ACM
56(2)
: 82~90
[confproc]
P. Cousot
/ 1977
/ Abstract interpretation: A unified lattice model for static analysis of programs by construction or approximation of fixpoints
/ Proceedings of the 4th ACM SIGACT- SIGPLAN symposium on Principles of programming languages
/ ACM
: 238~252