Bek or Meh? Find out about how to use Bek to sanitize your real applications

What is Bek?  It is a way to Model Imperative String Operations with Symbolic Transducers.  Ouch, I need an aspirin after writing that sentence.

Like much of software Bek is a solution looking for a problem, but problems there are for this solution! 

From the link:

Web applications must use special string-manipulating sanitization functions on untrusted user data, but writing these functions correctly is error prone and time consuming.

If you want to read along with me, you can check out the PDF at

This is complicated, but interesting.

Take a look at my other blogs:

Finally take a look at my colleagues blogs!
Skip to main content