A Hybrid Analysis to Detect Java Serialisation Vulnerabilities

Serialisation related security vulnerabilities have recently been reported for numerous Java applications. Since serialisation presents both soundness and precision challenges for static analysis, it can be difficult for analyses to precisely pinpoint serialisation vulnerabilities in a Java library....

Full description

Saved in:

Bibliographic Details
Published in:	2020 35th IEEE/ACM International Conference on Automated Software Engineering (ASE) pp. 1209 - 1213
Main Authors:	Rasheed, Shawn, Dietrich, Jens
Format:	Conference Proceeding
Language:	English
Published:	ACM 01.09.2020
Subjects:	Fuzzing Java Java Serialisation Libraries Manuals Program Analysis Security Security Analysis Software engineering Static analysis
ISSN:	2643-1572
Online Access:	Get full text
Tags:	Add Tag No Tags, Be the first to tag this record!

Be the first to leave a comment!