all InfoSec news
Divide, Conquer and Verify: Improving Symbolic Execution Performance. (arXiv:2310.03598v1 [cs.CR])
cs.CR updates on arXiv.org arxiv.org
Symbolic Execution is a formal method that can be used to verify the behavior
of computer programs and detect software vulnerabilities. Compared to other
testing methods such as fuzzing, Symbolic Execution has the advantage of
providing formal guarantees about the program. However, despite advances in
performance in recent years, Symbolic Execution is too slow to be applied to
real-world software. This is primarily caused by the \emph{path explosion
problem} as well as by the computational complexity of SMT solving. In …
computer detect fuzzing performance program software software vulnerabilities symbolic execution testing verify vulnerabilities