Security applications of Formal Language Theory

[2014-11-24 Mon 20:27] speaker: Vikram event: Papers We Love SG ** theory of secure software design treat inputs as language that is easy to secure ** general languages are undecidable for security, should use specific ones with decidable properties ** inadequate approaches to SQL injection blacklisting escaping limited by use of a regular language to check a context free language ** validate the parse tree