Answered step by step
Verified Expert Solution
Question
1 Approved Answer
1. Static analysis is a program analysis technique to analyze a program's code without running it. a. List, and explain the reasons, of 2 of
1. Static analysis is a program analysis technique to analyze a program's code without running it. a. List, and explain the reasons, of 2 of the benefits static analysis provides. [2] b. List, and explain the reasons, of 3 of the drawbacks static analysis pro- vides. [3] c. What impact on the software development process does static analysis have? [4] d. What does it mean when a static analysis is sound? [2] e. What does it mean when a static analysis is complete? [2] f. Consider a static taint flow analysis as we have discussed in class. Con- sider the following code snippet: 1 int printf(untainted char *fmt, ...); 2 void read (int, tainted char *input, int); 3 4 char name [10]; 5 6 read (0, name, sizeof (name)); 7 char *x = name; 8 printf(x); Let us assume we are interested in an analysis that identifies no tainted data flows (where untainted
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started