SAST Fundamentals II - Program Analysis Part 1
In this Brown Bag, we are going to dive into the SAST fundamentals and cover the following topics:
Program Analysis
- Approximating Software Behaviors Program Semantics
- What are Program Semantics
- Soundness vs. Completeness
- Intraproc. Control-Flow Analysis
- What is Control-Flow
- How to compute a Control-Flow Graph (CFG) from the AST/Parse Tree
- Intraproc. Data-Flow Analysis
- Monotone Dataflow Analysis Frameworks
- Reaching Definitions
We will walk through the different topics using code examples for our simple programming language slang
that we designed in SAST Fundamentals I - Parsing.
Edited by Julian Thome