event

Detecting and Preventing Web Application Security Vulnerabilities via Program Analysis

Web applications are the subject of an increasing number of attacks. Most attack types involve injection of malicious content into the data processed by the Web application (e.g. HTTP parameter values, session attributes, cookies, etc). The large number of severe attacks reported in recent years on banking applications, as well as corporate and government Web sites, has created a special motivation to develop analysis tools for detecting vulnerabilities in Web applications. In the last five years, Tripp has been a leading member of an IBM project with this goal, collaborating with researchers at IBM and in academia. In this talk, he will present several research challenges that were addressed as part of this ambitious project, as well as solutions developed in response to these challenges.

Media

No media selected

Summary

Omer Tripp is a graduate student at Tel-Aviv University, soon to complete his studies under the supervision of Prof. Mooly Sagiv. Omer has also been working for IBM for the last five years, and has recently been nominated IBM Master Inventor for his extensive and prolific innovation and mentoring work. Omer's research work -- published at leading conferences and journals including POPL, PLDI, OOPSLA and TOSEM -- has focused on two main areas: (i) program analysis for security and language-based security, and (ii) automatic and interactive software parallelization.
(http://www.cs.tau.ac.il/~omertrip/)

Details

Friday
Jan 11 2013
11:00am - 12:00pm

Contact: Dr. Mayur Naik: mayur.naik@cc.gatech.edu or 404-385-4746

In campus calendar: No

Sidebar Content

No sidebar content

Groups

Status

  • Workflow Status:Published
  • Created By:Antonette Benford
  • Created:01/09/2013
  • Modified By:Fletcher Moore
  • Modified:10/07/2016

Related Links

  • No related links.

Categories

Keywords

  • No keywords were submitted.