Research Intern: Static Analysis to Detect Crypto-Misuse
OracleAu-au,australia-brisbaneUpdate time: February 26,2020
Job Description
Do you want to apply your knowledge of static analysis for Java to detect security issues? Are you interested in developing an analysis that can be integrated into an existing framework?
If so, we have a 4-6 month, full-time internship tenable during June 2020 to May 2021 that will interest you.
Parfait is Oracle’s static analysis tool based on LLVM that provides scalable and precise analysis of C/C , Java and PL/SQL applications for security vulnerabilities. In this project we would like to improve and extend our analyses in the Parfait tool, to check for the correct usage of cryptographic and security functions in Java applications. These analyses will be evaluated on large, real-world applications for scalability, precision, and recall, and then further refined or extended based on the evaluation.
Duties You will\:
• Familiarise yourself Parfait
• Extend Parfait’s analysis to support detection of cryptographic related vulnerabilities
• Evaluate the analysis on a variety of real applications
• Write a detailed report on work done
• Give presentations to the group on work
• Familiarise yourself Parfait
• Extend Parfait’s analysis to support detection of cryptographic related vulnerabilities
• Evaluate the analysis on a variety of real applications
• Write a detailed report on work done
• Give presentations to the group on work
Prerequisites\:
• Currently enrolled in a PhD or research-based Masters degree in Computer Science or Software Engineering
• Have excellent C programming skills
• Strong understanding of the Java programming language
• Have excellent software engineering skills and understanding of algorithms and data-structures
• Experience with static program analysis or compiler implementation
• Have good Understanding of common cryptographic and security operations
• Have excellent problem solving skills
• Have excellent communication skills
• Currently enrolled in a PhD or research-based Masters degree in Computer Science or Software Engineering
• Have excellent C programming skills
• Strong understanding of the Java programming language
• Have excellent software engineering skills and understanding of algorithms and data-structures
• Experience with static program analysis or compiler implementation
• Have good Understanding of common cryptographic and security operations
• Have excellent problem solving skills
• Have excellent communication skills
Benefits\:
• These positions are paid at current industry rates.
• Where appropriate, travel & visa costs associated with overseas applicants will be reimbursed.
• Ongoing learning is incorporated in all aspects of the project.
!|!This job code is utilized for the majority of our temporary hires. The individual is performing hourly job duties as defined under the Fair Labor Standards Act.• These positions are paid at current industry rates.
• Where appropriate, travel & visa costs associated with overseas applicants will be reimbursed.
• Ongoing learning is incorporated in all aspects of the project.
!|!
Get email alerts for the latest"Research Intern: Static Analysis to Detect Crypto-Misuse jobs in Au-au,australia-brisbane"