Vulnerability Assessment of Open Source Wireshark and Chrome Browser
Final rept. Nov 2009-Jan 2013
WISCONSIN UNIV MADISON
Pagination or Media Count:
The objective of this effort was to conduct an in-depth vulnerability assessment of the Wireshark network protocol monitoring system. An in-depth assessment using First Principles Vulnerability Assessment FPVA methodology was performed that produced architectural, resource, privilege and trust analyses of the code, which, in turn, identified several verified security vulnerabilities. In addition, a similar analysis on the Google ChromeChromium web browser was performed, producing similar products and a vulnerability report. Other accomplishments included new work on tools to speed the task of analyst-driven vulnerability assessment of code, new techniques for statically analyzing source code for defects, and useful collaborations with industry and academia.
- Computer Systems Management and Standards