Software Engineering Institute

Finding violations of secure coding guidelines in source code is daunting, but fixing them is an even greater challenge. Experience in examining software bugs reveals that many security-relevant bugs follow common patterns (which can be automatically detected) and that there are corresponding patterns for repair (which can be performed by automatic program transformation). Will Klieber and Will Snavely describe their research in automated code repair, which can eliminate security vulnerabilities much faster than the existing manual process and at a much lower cost.