Program Analysis for Software Quality
The Software Engineering Research Group of Delft University of
Technology has an open position for a PhD student in the area of Program Analysis for Software Quality
The position is for four years and fully funded by the Faculty of
Electrical Engineering, Mathematics and Computer Science.
The TUD Software Engineering Research Group
The SERG group conducts research in technical aspects of software
engineering, including reverse engineering, software exploration,
program analysis, model-driven engineering, and program
transformation and generation. Active research projects conducted
by the group include Model-Driven Software Evolution (MoDSE) and
Software Architectre Reconstruction (Reconstructor). As part of a
collobaration between the three technical universities in the
Netherlands we have funding for setting up a large buildfarm for
automatic building, testing, and releasing of software.
More information at http://www.se.ewi.tudelft.nl/
Program Analysis for Software Quality
Programming environments provide limited means for checking the
quality of software; monitoring software quality beyond type
correctness is left to manual (peer) review by developers. For
example, avoiding injection attacks in web applications is inhibited
by the fact that database queries are stated as string literals,
about which the programming language has no knowledge.
The goal of the ASSESS research project is the development of
algorithms and techniques to perform an in-depth inspection of a
system's source code and recognize a configurable and extensible set
of programming idioms (patterns) that characterize violations of
quality guidelines, such as security vulnerabilities. These
techniques will be captured in a proof-of-concept workbench that
will improve the feasibility and accuracy of software quality
evaluations with respect to traditional inspection techniques, while
at the same time reducing their costs.
The ASSESS project builds on earlier SERG research in the area of
software inspection, source-based quality assessments and impact
analysis. The project will closely collaborate with the group's new
CEDICT/LaQuSo buildfarm which provides an excellent context and
infrastructure for performing large scale automated source code
assessments, and for integrating such a step with the continuous
test and build process of software systems.
You should have (or soon have) a MSc or equivalent degree in
computer science or a closely related area. Familiarity with
programming languages, program analysis, and testing is considered
an advantage. You are expected to collaborate in an internationally
oriented research environment. Good English speaking and writing
skills are demanded, as well as the willingness to learn Dutch. You
will enroll in the PhD programme of the Dutch Institute for
Programming Research and Algorithmics (IPA).
The selected candidate will be appointed for a period of 4 years
with a gross salary starting at around EUR 1950 per month (first
year) and reaching EUR 2500 per month (final year), plus an 8%
holiday allowance and other benefits.
You can obtain further information about the position from:
If you are interested, please send an application by email to the
above addresses, including:
- A cover letter stating your specific interest in the position, indicating also your motivation and qualifications for joining the project. (In the absence of such a cover letter your application will be rejected without notification.)
- A full curriculum vitae, including the subject and supervisor of your graduate thesis.
- A copy of your Master's thesis and copies of papers you have written.
- Letters of recommendation or references of at least two scientific staff members.
Make sure the documents are in PDF format.
All applications must be received at or before January 15, 2008.