Secure Coding Capability Assessment:
Development of the Buffer Overflow Concept Inventory
Presenter:
Dr. Robin A. Gandhi
Associate Professor, Cyber Security
University of Nebraska-Omaha
School of Interdisciplinary Informatics
Buffer Overflows are the most egregious bugs related to software security for the last 30 years. While many tools and standards exist to identify buffer overflows in software, we continue to educate the next generation of programmers in C without an instrument to assess their understanding of buffer overflows. In this talk, we will present our approach and experiences in developing a Buffer Overflow Concept Inventory.
Presentation: 20-25 Minutes
Q&A: 15-20 Minutes