Retooling and securing systemic debugging
2012 (English)In: Lecture Notes in Computer Science, Karlskrona: Springer , 2012, Vol. 7617, 137-152 p.Conference paper (Refereed) Published
There are a few major principal tools that have long supported the often frustrating and time-consuming part of software development and maintenance that is debugging. These tools are the symbolic debugger, the profiler, the tracer and the crash dump analyzer. With the advancement of dynamic protection mechanisms directed towards hindering or thwarting exploitation of software vulnerabilities (a subset of possible software bugs), combined with a shift from developers being in charge of the development of one distinct piece of software to, instead, piecing a large assortment of third party components and libraries into a common service or platform, many of the mechanisms that the aforementioned tools rely on have been either eliminated, circumvented or otherwise rendered inefficient. In this article, we present an industrial case illustrating this shift, highlighting specific issues and challenges facing the effective use of aforementioned tools, then look at how recent developments in tracing frameworks can be further improved to remedy the situation. Lastly, we introduce such a tool alongside initial experimentation and validation.
Place, publisher, year, edition, pages
Karlskrona: Springer , 2012. Vol. 7617, 137-152 p.
Debuggers, Issues and challenges, Protection mechanisms, Software bug, Software vulnerabilities, Third parties, Time-consuming parts, Tracing framework
IdentifiersURN: urn:nbn:se:bth-7125DOI: 10.1007/978-3-642-34210-3_10Local ID: oai:bth.se:forskinfo63CDC2E2BE64C327C1257AC9004363D0ISBN: 978-364234209-7OAI: oai:DiVA.org:bth-7125DiVA: diva2:834707
17th Nordic Conference on Secure IT Systems, NordSec