Question: 1. Static analysis is a program analysis technique to analyze a program's code without running it. a. List, and explain the reasons, of 2 of
![2 of the benefits static analysis provides. [2] b. List, and explain](https://s3.amazonaws.com/si.experts.images/answers/2024/09/66dbaa97dce9b_08766dbaa977c923.jpg)
1. Static analysis is a program analysis technique to analyze a program's code without running it. a. List, and explain the reasons, of 2 of the benefits static analysis provides. [2] b. List, and explain the reasons, of 3 of the drawbacks static analysis pro- vides. [3] c. What impact on the software development process does static analysis have? [4] d. What does it mean when a static analysis is sound? [2] e. What does it mean when a static analysis is complete? [2] f. Consider a static taint flow analysis as we have discussed in class. Con- sider the following code snippet: 1 int printf(untainted char *fmt, ...); 2 void read (int, tainted char *input, int); 3 4 char name [10]; 5 6 read (0, name, sizeof (name)); 7 char *x = name; 8 printf(x); Let us assume we are interested in an analysis that identifies no tainted data flows (where untainted
Step by Step Solution
There are 3 Steps involved in it
Get step-by-step solutions from verified subject matter experts
Study Help