About | Demo | Download | Members | Publications
About SSVChecker | top
SSVChecker in Eclipse Screenshot
SSVChecker (Static Security Vulnerability Checker) is the Eclipse plug-in tool developed to aid software developers in identifying
potential security vulnerabilities during software development in a user-friendly, commonly used IDE. SSVChecker provides an interface in which software developers can execute any
existing static analysis security vulnerability detection tool(s) and view the results from one or more these tools.
SSVChecker provides software developers with the following unique features:
- Provides features not found in other security vulnerability detection tools (e.g., union and intersection of the results of multiple tools) that better aids developers in identifying potential security vulnerabilities.
- Adapts to the results of user-performed analysis to prevent repeatedly reporting user-dismissed security vulnerabilities allowing developers to concentrate on those flagged security vulnerabilities that still warrant attention.
- Operates on a user-friendly, generic framework allowing for the inclusion of future static security vulnerability detection tools.
With these features, SSVChecker provides an interface in which both novice and expert software developers can develop secure software applications with the assistance of detection tools that can flag potential security vulnerabilities, provide explanations of the security flaw and provide suggestions for removing the possible security vulnerability.
SSVChecker Demonstration | top
You can now view a demonstration of SSVChecker here (you will need Macromedia Flash Player installed).
This demonstration will give a brief overview of the features of SSVChecker and show how to use the tool from within the Eclipse IDE.
Note, the SSVChecker example demonstration was made using DebugMode's Wink 2.0.
Download SSVChecker | top
Coming soon!
SSVChecker Members | top
-
Josh Dehlinger, Graduate Student, Department of Computer Science, Iowa State University
-
Qian Feng, Software Engineer, ABC Virtual Communications
-
Lan Hu, Graduate Student, Department of Computer Science, Utah State University
SSVChecker Related Publications | top
- Josh Dehlinger, Qian Feng and Lan Hu, "SSVChecker: Unifying Static Security Vulnerability Detection Tools in an Eclipse Plug-In," To appear at Eclipse Technology Exchange Workshop at OOPSLA 2006 (ETX 2006), Portland, OR October 22-23, 2006.
- Josh Dehlinger, Qian Feng and Lan Hu, "SSVChecker: A Tool to Unify and Exploit Multiple Static Security Vulernablity Detection Tools," Poster, To appear at Eclipse Technology Exchange (ETX) Poster Reception at OOPSLA 2006 , Portland, OR October 23, 2006.
