A-Z Index

Acquisition Support
Measurement & Analysis
Performance & Dependability
Predictability by Construction

Process & Performance Improvement
Risk & Opportunity Management
Security & Survivability

Software Architecture
Software Product Lines
Systems Interoperability
Ultra-Large-Scale Systems

Process Management

Software Development

Professional Development
SEI Training
SEI Partner Network
SEI Certification
SEI Membership

Calendar of Events
Tools & Methods
Research
Consulting

Reports & Papers
Presentations
Books

Webinars
Podcasts
Videos & DVDs

SEI Overview
Director's Message
Vision, Mission, & Strategy

Our Organization
Our People

Front Desk

Browse the Stacks

As-if Infinitely Ranged Integer Model

Integer overflow and wraparound are major causes of software vulnerabilities in the C and C++ programming languages. In this paper we present the as-if infinitely ranged (AIR) integer model, which provides a largely automated mechanism for eliminating integer overflow and integer truncation. The AIR integer model either produces a value equivalent to one that would have been obtained using infinitely ranged integers or results in a runtime constraint violation. Unlike previous integer models, AIR integers do not require precise traps, and consequently do not break or inhibit most existing optimizations.

Prototype
GCC 4.5.0

View Complete Report

Authors

David Keaton

Thomas Plum

Robert C. Seacord

David Svoboda

Alex Volkovitsky

Timothy Wilson

This report is related to the following area(s) of work:

Security and Survivability
Tools & Methods

Technical Note
CMU/SEI-2009-TN-023
July 2009

find us here

For more information

info@sei.cmu.edu

412-268-5800

Subscribe to our RSS feeds

Contact | Locations | Legal

©2010 Carnegie Mellon University