A technique to discern security bugs in a SoC well in advance of tapeout.
Pros: Simulation based technique very similar to assertion based verification(ABV).
Cons: Not Static. (i.e like lint) need to have a simulation up and running. (which is not so easy for big SoCs)
Here is our invited talk on the same topic at DAC 2018: