Integrated static code analysis and runtime verification
dc.contributor.author | Sözer, Hasan | |
dc.date.accessioned | 2016-02-15T09:33:29Z | |
dc.date.available | 2016-02-15T09:33:29Z | |
dc.date.issued | 2015-10 | |
dc.identifier.issn | 1097-024X | |
dc.identifier.uri | http://hdl.handle.net/10679/2257 | |
dc.identifier.uri | http://onlinelibrary.wiley.com/doi/10.1002/spe.2287/abstract | |
dc.description | Due to copyright restrictions, the access to the full text of this article is only available via subscription. | |
dc.description.abstract | Static code analysis tools automatically generate alerts for potential software faults that can lead to failures. However, these tools usually generate a very large number of alerts, some of which are subject to false positives. Because of limited resources, it is usually hard to inspect all the alerts. As a complementary approach, runtime verification techniques verify dynamic system behavior with respect to a set of specifications. However, these specifications are usually created manually based on system requirements and constraints. In this paper, we introduce a noval approach and a toolchain for integrated static code analysis and runtime verification. Alerts that are generated by static code analysis tools are utilized for automatically generating runtime verification specifications. On the other hand, runtime verification results are used for automatically generating filters for static code analysis tools to eliminate false positives. The approach is illustrated for the static analysis and runtime verification of an open-source bibliography reference manager software. | |
dc.description.sponsorship | TÜBİTAK | |
dc.language.iso | eng | en_US |
dc.publisher | Wiley | |
dc.relation | info:turkey/grantAgreement/TUBITAK/113E548 | |
dc.relation.ispartof | Software: Practice and Experience | |
dc.rights | restrictedAccess | |
dc.title | Integrated static code analysis and runtime verification | en_US |
dc.type | Article | en_US |
dc.peerreviewed | yes | |
dc.publicationstatus | published | en_US |
dc.contributor.department | Özyeğin University | |
dc.contributor.authorID | (ORCID 0000-0002-2968-4763 & YÖK ID 23178) Sözer, Hasan | |
dc.contributor.ozuauthor | Sözer, Hasan | |
dc.identifier.volume | 45 | |
dc.identifier.issue | 10 | |
dc.identifier.startpage | 1359 | |
dc.identifier.endpage | 1373 | |
dc.identifier.wos | WOS:000360814800003 | |
dc.identifier.doi | 10.1002/spe.2287 | |
dc.subject.keywords | Software verification | |
dc.subject.keywords | Runtime verification | |
dc.subject.keywords | Static code analysis | |
dc.subject.keywords | Model transformations | |
dc.subject.keywords | Tool integration | |
dc.identifier.scopus | SCOPUS:2-s2.0-84941180292 | |
dc.contributor.authorMale | 1 |
Files in this item
Files | Size | Format | View |
---|---|---|---|
There are no files associated with this item. |
This item appears in the following Collection(s)
Share this page