Logo des Repositoriums
 

Automated Detection of Bugs in Error Handling for Teaching Secure C Programming

dc.contributor.authorSchrötter, Max
dc.contributor.authorFalk, Maximilian
dc.contributor.authorSchnor, Bettina
dc.contributor.editorGreubel, André
dc.contributor.editorStrickroth, Sven
dc.contributor.editorStriewe, Michael
dc.date.accessioned2023-10-16T04:38:42Z
dc.date.available2023-10-16T04:38:42Z
dc.date.issued2023
dc.description.abstractThe Low-Level programming language C is widely used for Operating Systems, Embedded Systems and other performance critical applications. Since these applications are often security critical, they require secure programming. The C language on the other hand allows novice programmers to write insecure code easily. This makes it especially important to teach secure programming and give students feedback on potential security issues. One critical bug that is often overlooked is the incorrect handling of errors. In this paper, we present an Error Handling Analyzer (EHA) for the CoFee framework. The EHA detects missing error handling and incorrect error handling using the Clang Static Analyzer. We evaluated EHA on 100 student submissions and found that error handling bugs are a common mistake and that EHA can detect more than 80 % of the error handling bugs in these submissions.en
dc.identifier.doi10.18420/abp2023-1
dc.identifier.urihttps://dl.gi.de/handle/20.500.12116/42564
dc.language.isoen
dc.pubPlaceBonn
dc.publisherGesellschaft für Informatik e.V.
dc.relation.ispartofProceedings of the Sixth Workshop "Automatische Bewertung von Programmieraufgaben" (ABP 2023)
dc.relation.ispartofseriesWorkshop „Automatische Bewertung von Programmieraufgaben“
dc.subjectAutomated Assessment
dc.subjectContinuous Integration
dc.subjectContinuous Feedback
dc.subjectSituated Learning
dc.subjectSecure Programming
dc.titleAutomated Detection of Bugs in Error Handling for Teaching Secure C Programmingen
dc.typeText/Conference Paper
gi.conference.dateOctober 12-13, 2023
gi.conference.locationMunich, Germany
gi.conference.sessiontitleVollbeiträge

Dateien

Originalbündel
1 - 1 von 1
Vorschaubild nicht verfügbar
Name:
paper1.pdf
Größe:
199.93 KB
Format:
Adobe Portable Document Format