InspectJS: Leveraging Code Similarity and User-Feedback for Effective Taint Specification Inference for JavaScript

Static analysis has established itself as a weapon of choice for detecting security vulnerabilities. Taint analysis in particular is a very general and powerful technique, where security policies are expressed in terms of forbidden flows, either from untrusted input sources to sensitive sinks (in in...

Full description

Saved in:
Bibliographic Details
Published in:2022 IEEE/ACM 44th International Conference on Software Engineering: Software Engineering in Practice (ICSE-SEIP) pp. 165 - 174
Main Authors: Dutta, Saikat, Garbervetsky, Diego, Lahiri, Shuvendu K., Schafer, Max
Format: Conference Proceeding
Language:English
Published: IEEE 01.05.2022
Subjects:
Analytical models
Codes
JavaScript
Machine learning
Manuals
Measurement
Static analysis
Taint Analysis
Weapons
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Be the first to leave a comment!
You must be logged in first