The Scalability of Vulnerability Analysis

Files
bittick.mp4 (403.24 MB)
bittick_videostream.html (985 B)
transcription.txt (49.58 KB)
Author(s)
Bittick, Kennon
Advisor(s)
Editor(s)
Associated Organization(s)
Organizational Unit
Organizational Unit
Series
Series
Collections
Scholarly Events
Supplementary to:
Permanent Link
http://hdl.handle.net/1853/59333
Abstract
Analyzing software for vulnerabilities is an important capability in ensuring the security of a computing system. As software has become more complex and ubiquitous, however, traditional vulnerability analysis techniques have failed to scale with the software. This talk will look through some of the history of vulnerability analysis, starting with manual analysis and simple fuzzing, and will move into modern intelligent fuzzing and symbolic execution. Trade-offs between analysis effectiveness and scalability will be discussed throughout, and the talk will conclude by looking at the potential future of hybrid human-computer vulnerability analysis.
Sponsor
Date
2018-01-26
Extent
50:13 minutes
Resource Type
Moving Image
Resource Subtype
Lecture
Rights Statement
Rights URI