Source Code Analysis Laboratory (SCALe) Demo: Audit Format Strings

David Svoboda, CERT® Software Security Engineer demonstrates the Source Code Analysis Laboratory (SCALe): Audit Format Strings.

We do research and development to create tools to support creation of secure code right from the start, and analytical tools to detect code vulnerabilities. We also work with the software development and security communities to research and develop secure coding standards for commonly used programming languages and for smartphone platforms (Android, iOS, Win8).