Title :
KAFE: Kernel Analysis Front-End for Software Assurance
Author :
Burns, Luanne ; Pendergrass, J. Aaron ; Grizzard, Julian
Author_Institution :
Appl. Phys. Lab., Johns Hopkins Univ., Baltimore, MD, USA
Abstract :
KAFE is a tool for kernel inspection, navigation, iterative drill down and analysis with an easy to use interface for searching and sorting on kernel files, functions, types, variables, macros, and symbols. Although debuggers are geared towards run-time program analysis, the information they rely on offers a powerful basis for the static analysis of programs. The KAFE relational database is automatically gen-erated by analyzing the "Debug With Arbitrary Records Format" information. While we gain a great deal of insight into the workings of the Linux kernel and could hopefully recognize potentially problematic violations of data isolation and encapsulation, the scope of the KAFE tool goes behind kernel inspection and could be applied to program understanding in general. This paper shows how this approach differs from static source code analysis, run-time analysis or debuggers. The database generation and architecture are described and the interface is illustrated.
Keywords :
Linux; program diagnostics; relational databases; reverse engineering; software architecture; sorting; user interfaces; KAFE relational database; KAFE tool; Linux kernel; arbitrary record format; architecture; database generation; kernel analysis front-end; kernel file searching; kernel file sorting; kernel inspection; kernel navigation; program debug; program understanding; run-time program analysis; software assurance; static analysis; static source code analysis; user interface; Databases; Debugging; Geophysical measurement techniques; Inspection; Kernel; Linux;
Conference_Titel :
System Sciences (HICSS), 2011 44th Hawaii International Conference on
Conference_Location :
Kauai, HI
Print_ISBN :
978-1-4244-9618-1
DOI :
10.1109/HICSS.2011.266
