Being the Developers' Friend: Our Experience Developing a High-Precision Tool for Secure Coding

Danfeng (Daphne) Yao

Abstract

We discuss the needs and challenges of deployable security research by sharing our experience designing CryptoGuard, a high-precision tool for detecting cryptographic application programming interface misuses. Our project has produced multiple benchmarks as well as measurement results on state-of-the-art solutions.

People

Bio Item

Danfeng (Daphne) Yao , bio

Publication Details

Date of publication: May 26, 2022

Journal: IEEE Security & Privacy

Page number(s): 43-52

Volume: 20

Issue Number: 6

Publication Note: Danfeng Daphne Yao, Sazzadur Rahaman, Ya Xiao, Sharmin Afrose, Miles Frantz, Ke Tian, Na Meng, Cristina Cifuentes, Yang Zhao, Nicholas Allen, Nathan Keynes, Barton P. Miller, Elisa Heymann, Murat Kantarcioglu, Fahad Shaon: Being the Developers' Friend: Our Experience Developing a High-Precision Tool for Secure Coding. IEEE Secur. Priv. 20(6): 43-52 (2022)