Advanced Software Analysis
AbstractThis course aims at making students proficient in a wide range of skills required to develop tools that automatically analyse software and to use advanced type systems for safe programming. Both of these are employed in modern software development to ensure software quality and security in the face of ever-increasing complexity.
DescriptionThis course is the final course for the Software Analysis specialisation. It gets students as close as possible to the current research in the field.
The course is split in three parts. The first part focuses on programming in the language Idris. Idris is a dependently typed functional programming language, which means that the type system can express properties of programs. We will see how to use this for type driven development, a style of programming where the compiler is used as a tool to ensure correctness of programs.
In the second part, we will discuss how we can safely program concurrent/distributed systems. Our main focus will be on session types, a specification language for distributed protocols. We will use session types for verifying that communicating processes never reach communication errors or deadlocks. We will touch both theoretical and applied aspects: we will learn algorithms for checking code correctness and study implementations of session types in mainstream programming languages.
In the third part of the course, we focus on three topics in intelligent methods for testing and fixing programs: synthesis of test data using satisfiability solving (satisfiability-modulo-theory), synthesis of high-coverage test data using symbolic execution, and automatic program repair (generating patches). We investigate the operating principles of these tools and learn to use them on case study programs.
- Having taken the course Modelling Languages and Systems.
- Experience with developing software;
Intended learning outcomes
After the course, the student should be able to:
- Use and discuss advanced type systems for safe software development
- Formally specify properties of programs and data using types and logics
- Use techniques for analysing and repairing programs
- Discuss and characterise some recent developments in programming languages and verification technology
- Use techniques for automatic generation of high-quality test data for programs
Two weekly teaching
sessions for 9 weeks followed by a project on a topic chosen by the students.
The meetings will be a combination of lectures, student presentations and
exercises with a focus on student participation
The student will receive the grade NA (not approved) at the ordinary exam, if the mandatory activities are not approved and the student will use an exam attempt.
The course literature is published in the course page in LearnIT.
Student Activity BudgetEstimated distribution of learning activities for the typical student
- Preparation for lectures and exercises: 15%
- Lectures: 20%
- Exercises: 20%
- Assignments: 25%
- Project work, supervision included: 10%
- Other: 10%
Ordinary examExam type:
D: Submission of written work with following oral, External (7-point scale)
D1G: Submission for groups with following oral exam based on the submission. Shared responsibility for the report.
Project submission: Report + code.
The oral exam consist of a 5 minutes group presentation followed by a 25 minutes individual oral exam of each group member.
Group and individual
- Maximum 3 students per group.
Mixed exam 2 : Joint student presentation followed by an individual dialogue. The group makes their presentations together and afterwards the students participate in the dialogue individually while the rest of the group is outside the room.
Time and dateOrdinary Exam - submission Thu, 5 Jan 2023, 08:00 - 14:00
Ordinary Exam Thu, 26 Jan 2023, 09:00 - 21:00
Reexam - submission Tue, 21 Mar 2023, 09:00 - 12:00