This paper describes how taint analysis, a static analysis capability provided by CodeSonar, can be used to find potentially-hazardous inputs that can be used as attack surfaces within sensitive parts of an application, empowering developers to identify and eliminate these dangerous vulnerabilities before shipping.

Download Now!

100% Privacy Guaranteed

Protecting Against Tainted Data in Embedded Apps with Static Analysis

Learn how to use a static analysis technique called taint analysis to find and eliminate risks for command injections and other dangerous vulnerabilities.

About GrammaTech

At GrammaTech, we help our customers, partners, and government research sponsors solve the most challenging software issues of today and tomorrow, safeguarding embedded mission-critical devices from failure and cyber attack. With our security-first software design philosophy, you can rely on GrammaTech to help you design, develop, and deploy trusted software applications -- minimizing corporate risks and maximizing your competitive position.

© GrammaTech. All rights reserved.

Protecting Against Tainted Data in Embedded Applications with Static Analysis

As embedded applications become more feature-rich, the risks of security vulnerabilities are increasing. 

Programmers can defend against exploits that occur when a hacker sends data over an input channel, by treating input data as potentially hazardous and carefully checking the data for validity before use.

What will you learn?

Fix the following errors: