CORDIS
EU research results

CORDIS

English EN
A Source code analysis Toolbox for software security AssuraNCE

A Source code analysis Toolbox for software security AssuraNCE

Objective

The immunity of a system to malicious third parties trying to modify its behaviour (e.g. to perform unauthorized actions) is called security. Ensuring this feature in information and communication technologies is a requirement for establishing a trustworthy Information Society. Several strategies can be explored to deal with this problem. One of them, called program analysis, relies on formal techniques to semi-automatically detect unintended behaviours in software systems. This approach allows the verification and secure exploitation of legacy and commercial-off-the-shelf components.Yet in the domain of security, program analysis techniques are still in infancy. They face several challenges, among which the incomplete detection of security flaws, and limited support both for programming languages and industrial verification procedures. These challenges are hindering the adoption of program analysis tools as part of security assurance practices and certification standards compliance checks.The objective of STANCE is to drive scientific and technological breakthroughs in the domain of software security. Over three years, STANCE will define, implement and validate a set of program analysis tools capable of verifying the security of complex software systems made in C, C++ and Java. STANCE proposes to build on existing assets: formal methods, state-of-the-art static and dynamic program analysis tools, security evaluation expertise, and industry-specific knowledge will be used and significantly extended. The resulting program analysis toolbox and supporting methods will increase the trustworthiness and the cost-effectiveness of existing security-oriented processes. These innovations will durably alter the domain of software security assurance, with broad consequences on its legal, societal, and economic aspects.STANCE gathers the expertise of 10 organisations from 5 countries, including 4 leading industrial partners, 2 SMEs and 4 academic and research partners.
Leaflet | Map data © OpenStreetMap contributors, Credit: EC-GISCO, © EuroGeographics for the administrative boundaries

Coordinator

COMMISSARIAT A L ENERGIE ATOMIQUE ET AUX ENERGIES ALTERNATIVES

Address

Rue Leblanc 25
75015 Paris 15

France

Activity type

Higher or Secondary Education Establishments

EU Contribution

€ 1 164 245

Participants (9)

Sort alphabetically

Sort by EU Contribution

Expand all

TECHNISCHE UNIVERSITAET GRAZ

Austria

EU Contribution

€ 353 276

KATHOLIEKE UNIVERSITEIT LEUVEN

Belgium

EU Contribution

€ 310 184

FRAUNHOFER GESELLSCHAFT ZUR FOERDERUNG DER ANGEWANDTEN FORSCHUNG E.V.

Germany

EU Contribution

€ 455 283

INFINEON TECHNOLOGIES AG

Germany

EU Contribution

€ 298 373

TRUSTED LABS SAS

France

EU Contribution

€ 129 219

THALES SIX GTS FRANCE SAS

France

EU Contribution

€ 329 459

DASSAULT AVIATION

France

EU Contribution

€ 294 427

ARTTIC

France

EU Contribution

€ 229 134

SEARCH-LAB BIZTONSAGI ERTEKELO ELEMZO ES KUTATO LABORATORIUM KORLATOLT FELELOSSEGU TARSASAG

Hungary

EU Contribution

€ 236 400

Project information

Grant agreement ID: 317753

Status

Closed project

  • Start date

    1 October 2012

  • End date

    31 March 2016

Funded under:

FP7-ICT

  • Overall budget:

    € 5 565 720

  • EU contribution

    € 3 800 000

Coordinated by:

COMMISSARIAT A L ENERGIE ATOMIQUE ET AUX ENERGIES ALTERNATIVES

France

This project is featured in...