Visualization for secure coding in C
Department of Cognitive and Learning Sciences
This paper describes a pedagogical system to visualize program execution.1 The visualization is designed to help students understand how to develop more secure and robust C programs. The system provides several perspectives on the execution including: the values of registers and the logical address space, a call graph, the file descriptor and inode tables, and the handling of sensitive data like passwords and keys. These visualizations are designed to help students understand fundamental concepts such as: buffer overflows, integer overflows, proper handling of sensitive data and application of the principle of least privilege in several contexts including file operations, secure SUID programming, and use and management of the process environment.
Proceedings of the 2017 ACM Conference on Innovation and Technology in Computer Science Education
Visualization for secure coding in C.
Proceedings of the 2017 ACM Conference on Innovation and Technology in Computer Science Education.
Retrieved from: https://digitalcommons.mtu.edu/michigantech-p/607