← Retour aux offres

Automatic generation of security tests and exploits

Postée le 08 nov.

Lieu : MOUGINS · Contrat : Stage · Rémunération : depending on the length of the internship and your diploma €

Société : SAP Labs France SAS

Founded in 1972, SAP has grown to become the world's leading provider of business software solutions. SAP is market leader in enterprise application software. The company is also the fastest-growing major database company. Globally, more than 77% of all business transactions worldwide touch an SAP software system. With more than 347.000 customers in more than 180 countries, SAP includes subsidiaries in all major countries. SAP is the world's largest inter-enterprise software company and the world's third-largest independent software supplier, overall. SAP solutions help enterprises of all sizes around the world to improve customer relationships, enhance partner collaboration and create efficiencies across their supply chains and business operations. SAP employs more than 98.600 people.
Security Research at SAP Labs France, Sophia Antipolis
Based at SAP Labs France Mougins, Security Research Sophia-Antipolis addresses the upcoming security needs, focusing on increased automation of the security life cycle and on providing innovative solutions for the security challenges in networked businesses, including cloud, services and mobile.

Description du poste

SAP business applications depend on open-source software (OSS) components, and it is paramount to ensure that such components are secure and do not contain vulnerabilities. Careful analysis is necessary to protect both SAP customers and SAP itself from any harm that can result from the use of insecure and vulnerable OSS.

One element supporting this goal is to use software tools to automate the analysis of OSS usage. SAP Security Research has developed a tool (https://github.com/SAP/vulnerability-assessment-tool) that scans Java and Python applications, identifies insecure OSS components, assesses the security risk in application-specific contexts, and proposes mitigation actions. This tool is regularly used by hundreds of development teams across SAP, and represents one important building block of SAP’s overall strategy regarding the secure use of OSS.

A key feature of this tool is to support developers in determining whether a vulnerable piece of code that is present in a dependency could be reached from the application. We use a combination of static and dynamic analysis to do so, relying on test-cases that the application developer might have coded. However, the effectiveness of this approach is dependent on the quality and coverage of the existing test suite.

This internship aims at investigating methods to automatically generate test cases with the goal of covering a given fragment of a dependency (in particular, vulnerable fragments). When this is not possible (because that part of the dependency is not reachable), it should be possible to obtain a measure of confidence.
The student will design and implement a proof-of-concept that will be applied to one or more sample cases taken from real SAP products or from open-source applications.

Profil recherché

• University Level: Last year of MSc or less if the student has a good profile
• Solid foundations in CS and a passion for well-designed, cleanly implemented software
• Interest in experimental research
• Good knowledge of one or more of the following languages: Java, Python, Go
• Experience with Git, Linux (bash), software testing
• Prior exposure to one or more of the following topics is desirable but not mandatory:
o software analysis, symbolic execution, concolic testing, constraint-solving, model checking
• Fluency in English (working language)
• Good oral and written communication skills

Voir le fichier joint

Pour postuler :

Please candidate by clicking on this link:

UPLOAD (all documents must be in English):
• Your CV
• Cover letter
• Any relevant documents