Search Results - "Theory of computation Semantics and reasoning Program reasoning Program analysis"

Automated Third-Party Library Detection for Android Applications: Are We There Yet? by Zhan, Xian, Fan, Lingling, Liu, Tianming, Chen, Sen, Li, Li, Wang, Haoyu, Xu, Yifei, Luo, Xiapu, Liu, Yang

“…Third-party libraries (TPLs) have become a significant part of the Android ecosystem. Developers can employ various TPLs with different functionalities to…”
Get full text

PyCG: Practical Call Graph Generation in Python by Salis, Vitalis, Sotiropoulos, Thodoris, Louridas, Panos, Spinellis, Diomidis, Mitropoulos, Dimitris

“…Call graphs play an important role in different contexts, such as profiling and vulnerability propagation analysis. Generating call graphs in an efficient…”
Get full text

S-gram: Towards Semantic-Aware Security Auditing for Ethereum Smart Contracts by Liu, Han, Liu, Chao, Zhao, Wenqi, Jiang, Yu, Sun, Jiaguang

“…Smart contracts, as a promising and powerful application on the Ethereum blockchain, have been growing rapidly in the past few years. Since they are highly…”
Get full text

Spatio-temporal context reduction: a pointer-analysis-based static approach for detecting use-after-free vulnerabilities by Yan, Hua, Sui, Yulei, Chen, Shiping, Xue, Jingling

“…Zero-day Use-After-Free (UAF) vulnerabilities are increasingly popular and highly dangerous, but few mitigations exist. We introduce a new…”
Get full text

StubDroid: Automatic Inference of Precise Data-Flow Summaries for the Android Framework by Arzt, Steven, Bodden, Eric

“…Smartphone users suffer from insucient information on how commercial as well as malicious apps handle sensitive data stored on their phones. Automated taint…”
Get full text

Taming reflection: Aiding static analysis in the presence of reflection and custom class loaders by Bodden, Eric, Sewe, Andreas, Sinschek, Jan, Oueslati, Hela, Mezini, Mira

“…Static program analyses and transformations for Java face many problems when analyzing programs that use reflection or custom class loaders: How can a static…”
Get full text

flowR: A Static Program Slicer for R by Sihler, Florian, Tichy, Matthias

“…Context Many researchers rely on the R programming language to perform their statistical analyses and visualizations in the form of R scripts. However, recent…”
Get full text

Improving the Comprehension of R Programs by Hybrid Dataflow Analysis by Sihler, Florian

“…Context Comprehending code is crucial in all areas of software development, with many existing supporting tools and techniques for various languages. However,…”
Get full text

Language-Agnostic Static Analysis of Probabilistic Programs by Bock, Markus, Schroder, Michael, Cito, Jurgen

“…Probabilistic programming allows developers to focus on the modeling aspect in the Bayesian workflow by abstracting away the posterior inference machinery. In…”
Get full text

DescribeCtx: Context-Aware Description Synthesis for Sensitive Behaviors in Mobile Apps by Yang, Shao, Wang, Yuehan, Yao, Yuan, Wang, Haoyu, Ye, Yanfang Fanny, Xiao, Xusheng

“…While mobile applications (i.e., apps) are becoming capable of handling various needs from users, their increasing access to sensitive data raises privacy…”
Get full text

Context Debloating for Object-Sensitive Pointer Analysis by He, Dongjie, Lu, Jingbo, Xue, Jingling

“…We Introduce a new approach, Conch, for debloating contexts for all the object-sensitive pointer analysis algorithms developed for object-oriented languages,…”
Get full text

Boosting Path-Sensitive Value Flow Analysis Via Removal of Redundant Summaries by Wang, Yongchao, Cai, Yuandao, Zhang, Charles

“…Value flow analysis that tracks the flow of values via data dependence is a widely used technique for detecting a broad spectrum of software bugs. However, the…”
Get full text

Module-Aware Context Sensitive Pointer Analysis by Li, Haofeng, Shi, Chenghang, Lu, Jie, Li, Lian, Zhao, Zixuan

“…The Java Platform Module System (JPMS) has found widespread applications since introduced in Java 9. However, existing pointer analyses fail to leverage the…”
Get full text

Static Analysis of Remote Procedure Call in Java Programs by Cui, Baoquan, Qu, Rong, Tang, Zhen, Zhang, Jian

“…The Remote Procedure Call (RPC) is commonly used for inter-process communications over network, allowing a program to invoke a procedure in another address…”
Get full text

An Extensive Empirical Study of Nondeterministic Behavior in Static Analysis Tools by Miao, Miao, Mordahl, Austin, Soles, Dakota, Beideck, Alice, Wei, Shiyi

“…Recent research has studied the importance and identified causes of nondeterminism in software. Static analysis tools exhibit many risk factors for…”
Get full text

PREACH: A Heuristic for Probabilistic Reachability to Identify Hard to Reach Statements by Saha, Seemanta, Downing, Mara, Brennan, Tegan, Bultan, Tevfik

“…We present a heuristic for approximating the likelihood of reaching a given program statement using 1) branch selectivity (representing the percentage of…”
Get full text

PROMAL: Precise Window Transition Graphs for Android via Synergy of Program Analysis and Machine Learning by Liu, Changlin, Wang, Hanlin, Liu, Tianming, Gu, Diandian, Ma, Yun, Wang, Haoyu, Xiao, Xusheng

“…Mobile apps have been an integral part in our daily life. As these apps become more complex, it is critical to provide automated analysis techniques to ensure…”
Get full text

EnMobile: entity-based characterization and analysis of mobile malware by Yang, Wei, Prasad, Mukul R., Xie, Tao

“…Modern mobile malware tend to conduct their malicious exploits through sophisticated patterns of interactions that involve multiple entities, e.g., the mobile…”
Get full text

ReuNify: A Step Towards Whole Program Analysis for React Native Android Apps by Liu, Yonghui, Chen, Xiao, Liu, Pei, Grundy, John, Chen, Chunyang, Li, Li

“…React Native is a widely-used open-source frame-work that facilitates the development of cross-platform mobile apps. The framework enables JavaScript code to…”
Get full text

PacDroid: A Pointer-Analysis-Centric Framework for Security Vulnerabilities in Android Apps by Chen, Menglong, Tan, Tian, Pan, Minxue, Li, Yue

“…General frameworks such as FlowDroid, IccTA, P/Taint, Amandroid, and DroidSafe have significantly advanced the development of static analysis tools for Android…”
Get full text