|![[Search]](https://talks.cam.ac.uk/images/search.gif?1209136071)
|![[A-Z Index]](https://talks.cam.ac.uk/images/az.gif?1209136071)
|![[Contact]](https://talks.cam.ac.uk/images/contact.gif?1209136071)
||![[University of Cambridge]](https://talks.cam.ac.uk/images/identifier2.gif?1209136071){kind=small} |
COOKIES: By using this website you agree that we can place Google Analytics Cookies on your device for performance monitoring. | ![[Talks.cam]](https://talks.cam.ac.uk/images/talkslogosmall.gif?1209136071) |
University of Cambridge > Talks.cam > Logic and Semantics Seminar (Computer Laboratory) > On Scalable Shape Analysis
On Scalable Shape AnalysisAdd to your list(s) Download to your calendar using vCal
If you have a question about this talk, please contact Matthew Parkinson. Shape analysis is a precise form of pointer analysis, which can be used to verify deep properties of data structures such as whether or not they are cyclic,whether they are nested, etc. Shape analyses are also expensive, and the tremendous number of abstract states they generate is an impediment to their use in verification of sizeable programs. In this talk, I will describe the techniques for improving the scalability of shape analyses. With these techniques, we have improved our analysis that was able to handle programs of up to 1,000 lines, such that it can now analyze programs of up to 10,000 lines. Our experiments also show that the new analysis is precise. It identifies memory safety errors and memory leaks in several Windows and Linux device drivers and, after these bugs are fixed, it automatically proves integrity of pointer manipulation for these drivers. This order of magnitude improvement in sizes of programs verified is obtained by combining several ideas. One is the local reasoning idea of separation logic, which reduces recomputation of analysis of procedure bodies, and which allows efficient transfer functions for primitive program statements. Another is an interprocedural analysis algorithm which aggressively discards intermediate states. The most important new technical contribution of the work is a new join (or widening) operator, which greatly reduces the number of abstract states used by the analysis while not greatly reducing precision; the join is also integrated with procedure summaries in an interprocedural analysis. This is joint work with Oukseh Lee, Cristiano Calcagno, Dino Distefano and Peter O’Hearn. This talk is part of the Logic and Semantics Seminar (Computer Laboratory) series. This talk is included in these lists:
Note that ex-directory lists are not shown. |
Other listsHPS History Workshop Continuity in Education and Cultural links between countries: Brexit Talk and Q&A Biophysical Techniques Lecture Series 2019Other talksThrowing light on organocatalysis: new opportunities in enantioselective synthesis Climate Change: Protecting Carbon Sinks Short-Selling Restrictions and Returns: a Natural Experiment Climate Change Uncertainty, Adaptation, and Growth A rose by any other name TBC Protein Folding, Evolution and Interactions Symposium Discovering regulators of insulin output with flies and human islets: implications for diabetes and pancreas cancer It's dangerous to go alone, take this - using Twitter for research |
Hongseok Yang (Queen Mary, University of London)
Friday 18 January 2008, 14:00-15:00