The System and Software Security Laboratory is a research group leading by Professor Bing Mao, exploring multiple respects in software security, such as vulnerability reproduction, postmortem program analysis, software failure diagnosis etc. We are part of the Department of Computer Science and Technology at Nanjing University.
The features of modularity and inheritance in C++ facilitate the developers’ usage, but also give rise to the problem of type confusion. As an ancestor class, a dangerous downcasting operation from the ancestor to its descendant can lead to a critical attack, such as control flow hijacking, out-of-bounds access to neighbor memory area, etc.
Analyze the software crashes in different ways.
This research is about to find ways to protect software and make it more secure.
Deep learning is a powerful tool to overcome the awkward situation of extracting endless rules from real world. We propose some novel approach in program analysis.
If you are insterested in joining our group, please contact Professor Bing Mao: email@example.com