SPLASH 2020
Sun 15 - Sat 21 November 2020 Online Conference
Thu 19 Nov 2020 17:00 - 17:40 at SPLASH-II - 25
Fri 20 Nov 2020 05:00 - 05:40 at SPLASH-II - 25

Despite years of research and practice, modern static analysis techniques still cannot detect oldest and extremely well understood software bugs such as the Heartbleed, one of the most “spectacular” security flaws of the recent decade. A remedy, as what we have attempted through the successful commercialization of the Pinpoint platform (PLDI 18), is to make static program analysis aware of the basic characteristics of the modern enterprise-scale software system. The talk focuses on discussing these characteristics and how Pinpoint addresses them pragmatically as well as its future directions. Pinpoint is a LLVM-based cross-language static analysis platform and deployed in major Chinese tech companies such as Tencent, Baidu, Huawei, and Alibaba.

The discussion following this talk will be moderated by Shan Lu.

My general research interest centers around the use of both static and dynamic programming analysis techniques for making complex software systems more secure and reliable. I’m an Associate Professor and director of the Cybersecurity Lab at HKUST. My research received an ICSE and a PLDI distinguished paper award, as well as the ACM SIGSOFT Doctoral Dissertation Award, and IBM PhD fellowships. I co-founded and served as the chairman of Sourcebrella Inc, a static analysis tool vendor.

Thu 19 Nov

Displayed time zone: Central Time (US & Canada) change

17:00 - 17:40
25REBASE at SPLASH-II +12h
17:00
40m
Talk
Enterprise-scale static analysis: A Pinpoint experience
REBASE
Charles Zhang The Hong Kong University of Science and Technology

Fri 20 Nov

Displayed time zone: Central Time (US & Canada) change

05:00 - 05:40
05:00
40m
Talk
Enterprise-scale static analysis: A Pinpoint experience
REBASE
Charles Zhang The Hong Kong University of Science and Technology