Retooling and securing systemic debugging
2012 (English)In: Lecture Notes in Computer Science, Karlskrona: Springer , 2012, Vol. 7617, p. 137-152Conference paper, Published paper (Refereed)
Abstract [en]
There are a few major principal tools that have long supported the often frustrating and time-consuming part of software development and maintenance that is debugging. These tools are the symbolic debugger, the profiler, the tracer and the crash dump analyzer. With the advancement of dynamic protection mechanisms directed towards hindering or thwarting exploitation of software vulnerabilities (a subset of possible software bugs), combined with a shift from developers being in charge of the development of one distinct piece of software to, instead, piecing a large assortment of third party components and libraries into a common service or platform, many of the mechanisms that the aforementioned tools rely on have been either eliminated, circumvented or otherwise rendered inefficient. In this article, we present an industrial case illustrating this shift, highlighting specific issues and challenges facing the effective use of aforementioned tools, then look at how recent developments in tracing frameworks can be further improved to remedy the situation. Lastly, we introduce such a tool alongside initial experimentation and validation.
Place, publisher, year, edition, pages
Karlskrona: Springer , 2012. Vol. 7617, p. 137-152
Keywords [en]
Debuggers, Issues and challenges, Protection mechanisms, Software bug, Software vulnerabilities, Third parties, Time-consuming parts, Tracing framework
National Category
Software Engineering
Identifiers
URN: urn:nbn:se:bth-7125DOI: 10.1007/978-3-642-34210-3_10Local ID: oai:bth.se:forskinfo63CDC2E2BE64C327C1257AC9004363D0ISBN: 9783642342097 (print)OAI: oai:DiVA.org:bth-7125DiVA, id: diva2:834707
Conference
17th Nordic Conference on Secure IT Systems, NordSec
2012-12-032012-12-032018-01-11Bibliographically approved