Using programmer-written compiler extensions to catch security holes (2002)

by Ken Ashcraft, Dawson Engler
Venue:In IEEE Symposium on Security and Privacy (S&P