[{"status":"public","type":"conference","publication":"2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM)","language":[{"iso":"eng"}],"_id":"26407","user_id":"15249","department":[{"_id":"76"},{"_id":"662"}],"year":"2021","citation":{"mla":"Piskachev, Goran, et al. “SecuCheck: Engineering Configurable Taint Analysis for Software Developers.” 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021.","short":"G. Piskachev, R. Krishnamurthy, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021.","bibtex":"@inproceedings{Piskachev_Krishnamurthy_Bodden_2021, title={SecuCheck: Engineering configurable taint analysis for software developers}, booktitle={2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM)}, author={Piskachev, Goran and Krishnamurthy, Ranjith and Bodden, Eric}, year={2021} }","apa":"Piskachev, G., Krishnamurthy, R., & Bodden, E. (2021). SecuCheck: Engineering configurable taint analysis for software developers. 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM).","ama":"Piskachev G, Krishnamurthy R, Bodden E. SecuCheck: Engineering configurable taint analysis for software developers. In: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM). ; 2021.","chicago":"Piskachev, Goran, Ranjith Krishnamurthy, and Eric Bodden. “SecuCheck: Engineering Configurable Taint Analysis for Software Developers.” In 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021.","ieee":"G. Piskachev, R. Krishnamurthy, and E. Bodden, “SecuCheck: Engineering configurable taint analysis for software developers,” 2021."},"title":"SecuCheck: Engineering configurable taint analysis for software developers","date_updated":"2022-10-20T12:44:31Z","author":[{"first_name":"Goran","last_name":"Piskachev","orcid":"0000-0003-4424-5838","id":"41936","full_name":"Piskachev, Goran"},{"first_name":"Ranjith","full_name":"Krishnamurthy, Ranjith","last_name":"Krishnamurthy"},{"id":"59256","full_name":"Bodden, Eric","orcid":"0000-0003-3470-3647","last_name":"Bodden","first_name":"Eric"}],"date_created":"2021-10-18T12:53:15Z"},{"type":"conference","publication":"Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering","status":"public","_id":"22463","user_id":"15249","department":[{"_id":"76"}],"language":[{"iso":"eng"}],"year":"2021","citation":{"apa":"Luo, L., Schäf, M., Sanchez, D., & Bodden, E. (2021). IDE Support for Cloud-Based Static Analyses. Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering.","mla":"Luo, Linghui, et al. “IDE Support for Cloud-Based Static Analyses.” Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, 2021.","short":"L. Luo, M. Schäf, D. Sanchez, E. Bodden, in: Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, 2021.","bibtex":"@inproceedings{Luo_Schäf_Sanchez_Bodden_2021, title={IDE Support for Cloud-Based Static Analyses}, booktitle={Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering}, author={Luo, Linghui and Schäf, Martin and Sanchez, Daniel and Bodden, Eric}, year={2021} }","ama":"Luo L, Schäf M, Sanchez D, Bodden E. IDE Support for Cloud-Based Static Analyses. In: Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering. ; 2021.","ieee":"L. Luo, M. Schäf, D. Sanchez, and E. Bodden, “IDE Support for Cloud-Based Static Analyses,” 2021.","chicago":"Luo, Linghui, Martin Schäf, Daniel Sanchez, and Eric Bodden. “IDE Support for Cloud-Based Static Analyses.” In Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, 2021."},"date_updated":"2022-10-20T13:11:45Z","author":[{"full_name":"Luo, Linghui","last_name":"Luo","first_name":"Linghui"},{"last_name":"Schäf","full_name":"Schäf, Martin","first_name":"Martin"},{"last_name":"Sanchez","full_name":"Sanchez, Daniel","first_name":"Daniel"},{"first_name":"Eric","full_name":"Bodden, Eric","id":"59256","last_name":"Bodden","orcid":"0000-0003-3470-3647"}],"date_created":"2021-06-17T10:18:05Z","title":"IDE Support for Cloud-Based Static Analyses"},{"language":[{"iso":"eng"}],"_id":"33840","department":[{"_id":"76"}],"user_id":"15249","status":"public","publication":"2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM)","type":"conference","title":"SootFX: A Static Code Feature Extraction Tool for Java and Android","date_updated":"2022-10-20T13:09:23Z","date_created":"2022-10-20T13:09:08Z","author":[{"full_name":"Karakaya, Kadiray","id":"70410","orcid":"https://orcid.org/0000-0001-9266-2084","last_name":"Karakaya","first_name":"Kadiray"},{"full_name":"Bodden, Eric","id":"59256","last_name":"Bodden","orcid":"0000-0003-3470-3647","first_name":"Eric"}],"year":"2021","page":"181–186","citation":{"mla":"Karakaya, Kadiray, and Eric Bodden. “SootFX: A Static Code Feature Extraction Tool for Java and Android.” 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021, pp. 181–186.","short":"K. Karakaya, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021, pp. 181–186.","bibtex":"@inproceedings{Karakaya_Bodden_2021, title={SootFX: A Static Code Feature Extraction Tool for Java and Android}, booktitle={2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM)}, author={Karakaya, Kadiray and Bodden, Eric}, year={2021}, pages={181–186} }","apa":"Karakaya, K., & Bodden, E. (2021). SootFX: A Static Code Feature Extraction Tool for Java and Android. 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 181–186.","ieee":"K. Karakaya and E. Bodden, “SootFX: A Static Code Feature Extraction Tool for Java and Android,” in 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021, pp. 181–186.","chicago":"Karakaya, Kadiray, and Eric Bodden. “SootFX: A Static Code Feature Extraction Tool for Java and Android.” In 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 181–186, 2021.","ama":"Karakaya K, Bodden E. SootFX: A Static Code Feature Extraction Tool for Java and Android. In: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM). ; 2021:181–186."}},{"status":"public","publication":"SCAM '21: IEEE International Working Conference on Source Code Analysis and Manipulation (Engineering Track)","type":"conference","language":[{"iso":"eng"}],"_id":"26406","project":[{"_id":"3","name":"SFB 901 - B: SFB 901 - Project Area B"},{"_id":"12","name":"SFB 901 - B4: SFB 901 - Subproject B4"},{"grant_number":"160364472","name":"SFB 901: SFB 901: On-The-Fly Computing - Individualisierte IT-Dienstleistungen in dynamischen Märkten ","_id":"1"}],"department":[{"_id":"76"}],"user_id":"15249","year":"2021","citation":{"apa":"Schubert, P., Hermann, B., Bodden, E., & Leer, R. (2021). Into the Woods: Experiences from Building a Dataflow Analysis Framework for C/C++. SCAM ’21: IEEE International Working Conference on Source Code Analysis and Manipulation (Engineering Track).","bibtex":"@inproceedings{Schubert_Hermann_Bodden_Leer_2021, title={Into the Woods: Experiences from Building a Dataflow Analysis Framework for C/C++}, booktitle={SCAM ’21: IEEE International Working Conference on Source Code Analysis and Manipulation (Engineering Track)}, author={Schubert, Philipp and Hermann, Ben and Bodden, Eric and Leer, Richard}, year={2021} }","mla":"Schubert, Philipp, et al. “Into the Woods: Experiences from Building a Dataflow Analysis Framework for C/C++.” SCAM ’21: IEEE International Working Conference on Source Code Analysis and Manipulation (Engineering Track), 2021.","short":"P. Schubert, B. Hermann, E. Bodden, R. Leer, in: SCAM ’21: IEEE International Working Conference on Source Code Analysis and Manipulation (Engineering Track), 2021.","ieee":"P. Schubert, B. Hermann, E. Bodden, and R. Leer, “Into the Woods: Experiences from Building a Dataflow Analysis Framework for C/C++,” 2021.","chicago":"Schubert, Philipp, Ben Hermann, Eric Bodden, and Richard Leer. “Into the Woods: Experiences from Building a Dataflow Analysis Framework for C/C++.” In SCAM ’21: IEEE International Working Conference on Source Code Analysis and Manipulation (Engineering Track), 2021.","ama":"Schubert P, Hermann B, Bodden E, Leer R. Into the Woods: Experiences from Building a Dataflow Analysis Framework for C/C++. In: SCAM ’21: IEEE International Working Conference on Source Code Analysis and Manipulation (Engineering Track). ; 2021."},"title":"Into the Woods: Experiences from Building a Dataflow Analysis Framework for C/C++","date_updated":"2023-06-15T08:39:55Z","date_created":"2021-10-18T12:52:12Z","author":[{"first_name":"Philipp","orcid":"0000-0002-8674-1859","last_name":"Schubert","full_name":"Schubert, Philipp","id":"60543"},{"first_name":"Ben","id":"66173","full_name":"Hermann, Ben","last_name":"Hermann","orcid":"0000-0001-9848-2017"},{"first_name":"Eric","full_name":"Bodden, Eric","id":"59256","orcid":"0000-0003-3470-3647","last_name":"Bodden"},{"full_name":"Leer, Richard","last_name":"Leer","first_name":"Richard"}]},{"type":"conference","publication":"International Workshop on AI and Software Testing/Analysis (AISTA)","status":"public","user_id":"15249","department":[{"_id":"76"}],"_id":"22462","language":[{"iso":"eng"}],"citation":{"bibtex":"@inproceedings{Shivarpatna Venkatesh_Bodden_2021, title={Automated Cell Header Generator for Jupyter Notebooks}, DOI={10.1145/3464968.3468410}, booktitle={International Workshop on AI and Software Testing/Analysis (AISTA)}, author={Shivarpatna Venkatesh, Ashwin Prasad and Bodden, Eric}, year={2021} }","mla":"Shivarpatna Venkatesh, Ashwin Prasad, and Eric Bodden. “Automated Cell Header Generator for Jupyter Notebooks.” International Workshop on AI and Software Testing/Analysis (AISTA), 2021, doi:10.1145/3464968.3468410.","short":"A.P. Shivarpatna Venkatesh, E. Bodden, in: International Workshop on AI and Software Testing/Analysis (AISTA), 2021.","apa":"Shivarpatna Venkatesh, A. P., & Bodden, E. (2021). Automated Cell Header Generator for Jupyter Notebooks. International Workshop on AI and Software Testing/Analysis (AISTA). https://doi.org/10.1145/3464968.3468410","ama":"Shivarpatna Venkatesh AP, Bodden E. Automated Cell Header Generator for Jupyter Notebooks. In: International Workshop on AI and Software Testing/Analysis (AISTA). ; 2021. doi:10.1145/3464968.3468410","chicago":"Shivarpatna Venkatesh, Ashwin Prasad, and Eric Bodden. “Automated Cell Header Generator for Jupyter Notebooks.” In International Workshop on AI and Software Testing/Analysis (AISTA), 2021. https://doi.org/10.1145/3464968.3468410.","ieee":"A. P. Shivarpatna Venkatesh and E. Bodden, “Automated Cell Header Generator for Jupyter Notebooks,” 2021, doi: 10.1145/3464968.3468410."},"year":"2021","author":[{"first_name":"Ashwin Prasad","full_name":"Shivarpatna Venkatesh, Ashwin Prasad","id":"66637","last_name":"Shivarpatna Venkatesh"},{"last_name":"Bodden","orcid":"0000-0003-3470-3647","full_name":"Bodden, Eric","id":"59256","first_name":"Eric"}],"date_created":"2021-06-17T10:14:48Z","date_updated":"2025-04-07T10:21:29Z","doi":"10.1145/3464968.3468410","title":"Automated Cell Header Generator for Jupyter Notebooks"},{"_id":"31132","project":[{"name":"Reaktor: SFB 901 - Automatisierte Risikoanalyse in Bezug auf Open-Source-Abhängigkeiten (Hektor) (Transferproject T3)","_id":"107"},{"name":"SFB 901: On-The-Fly Computing - Individualisierte IT-Dienstleistungen in dynamischen Märkten","_id":"1"},{"_id":"82","name":"SFB 901; Projektbereich T: Transferprojekte des Sonderforschungsbereichs"},{"name":"SFB 901; TP T3: Automatisierte Risikoanalyse in Bezug auf Open-Source-Abhängigkeiten (Hektor)","_id":"107"}],"department":[{"_id":"76"}],"user_id":"477","keyword":["Software"],"language":[{"iso":"eng"}],"publication":"IEEE Transactions on Software Engineering","type":"journal_article","status":"public","publisher":"Institute of Electrical and Electronics Engineers (IEEE)","date_updated":"2025-11-11T14:28:46Z","date_created":"2022-05-09T13:02:35Z","author":[{"first_name":"Andreas Peter","last_name":"Dann","id":"26886","full_name":"Dann, Andreas Peter"},{"last_name":"Plate","full_name":"Plate, Henrik","first_name":"Henrik"},{"orcid":"0000-0001-9848-2017","last_name":"Hermann","full_name":"Hermann, Ben","id":"66173","first_name":"Ben"},{"first_name":"Serena Elisa","last_name":"Ponta","full_name":"Ponta, Serena Elisa"},{"id":"59256","full_name":"Bodden, Eric","orcid":"0000-0003-3470-3647","last_name":"Bodden","first_name":"Eric"}],"title":"Identifying Challenges for OSS Vulnerability Scanners - A Study & Test Suite","doi":"10.1109/tse.2021.3101739","publication_identifier":{"issn":["0098-5589","1939-3520","2326-3881"]},"publication_status":"published","year":"2021","page":"1-1","citation":{"ama":"Dann AP, Plate H, Hermann B, Ponta SE, Bodden E. Identifying Challenges for OSS Vulnerability Scanners - A Study & Test Suite. IEEE Transactions on Software Engineering. Published online 2021:1-1. doi:10.1109/tse.2021.3101739","ieee":"A. P. Dann, H. Plate, B. Hermann, S. E. Ponta, and E. Bodden, “Identifying Challenges for OSS Vulnerability Scanners - A Study & Test Suite,” IEEE Transactions on Software Engineering, pp. 1–1, 2021, doi: 10.1109/tse.2021.3101739.","chicago":"Dann, Andreas Peter, Henrik Plate, Ben Hermann, Serena Elisa Ponta, and Eric Bodden. “Identifying Challenges for OSS Vulnerability Scanners - A Study & Test Suite.” IEEE Transactions on Software Engineering, 2021, 1–1. https://doi.org/10.1109/tse.2021.3101739.","apa":"Dann, A. P., Plate, H., Hermann, B., Ponta, S. E., & Bodden, E. (2021). Identifying Challenges for OSS Vulnerability Scanners - A Study & Test Suite. IEEE Transactions on Software Engineering, 1–1. https://doi.org/10.1109/tse.2021.3101739","mla":"Dann, Andreas Peter, et al. “Identifying Challenges for OSS Vulnerability Scanners - A Study & Test Suite.” IEEE Transactions on Software Engineering, Institute of Electrical and Electronics Engineers (IEEE), 2021, pp. 1–1, doi:10.1109/tse.2021.3101739.","short":"A.P. Dann, H. Plate, B. Hermann, S.E. Ponta, E. Bodden, IEEE Transactions on Software Engineering (2021) 1–1.","bibtex":"@article{Dann_Plate_Hermann_Ponta_Bodden_2021, title={Identifying Challenges for OSS Vulnerability Scanners - A Study & Test Suite}, DOI={10.1109/tse.2021.3101739}, journal={IEEE Transactions on Software Engineering}, publisher={Institute of Electrical and Electronics Engineers (IEEE)}, author={Dann, Andreas Peter and Plate, Henrik and Hermann, Ben and Ponta, Serena Elisa and Bodden, Eric}, year={2021}, pages={1–1} }"}},{"year":"2021","citation":{"ieee":"P. Schubert, F. Sattler, F. B. Schiebel, B. Hermann, and E. Bodden, “Modeling the Effects of Global Variables in Data-Flow Analysis for C/C++,” 2021.","chicago":"Schubert, Philipp, Florian Sattler, Fabian Benedikt Schiebel, Ben Hermann, and Eric Bodden. “Modeling the Effects of Global Variables in Data-Flow Analysis for C/C++.” In 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021.","ama":"Schubert P, Sattler F, Schiebel FB, Hermann B, Bodden E. Modeling the Effects of Global Variables in Data-Flow Analysis for C/C++. In: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM). ; 2021.","mla":"Schubert, Philipp, et al. “Modeling the Effects of Global Variables in Data-Flow Analysis for C/C++.” 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021.","bibtex":"@inproceedings{Schubert_Sattler_Schiebel_Hermann_Bodden_2021, title={Modeling the Effects of Global Variables in Data-Flow Analysis for C/C++}, booktitle={2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM)}, author={Schubert, Philipp and Sattler, Florian and Schiebel, Fabian Benedikt and Hermann, Ben and Bodden, Eric}, year={2021} }","short":"P. Schubert, F. Sattler, F.B. Schiebel, B. Hermann, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021.","apa":"Schubert, P., Sattler, F., Schiebel, F. B., Hermann, B., & Bodden, E. (2021). Modeling the Effects of Global Variables in Data-Flow Analysis for C/C++. 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM)."},"date_updated":"2025-12-04T10:43:01Z","author":[{"first_name":"Philipp","last_name":"Schubert","orcid":"0000-0002-8674-1859","full_name":"Schubert, Philipp","id":"60543"},{"full_name":"Sattler, Florian","last_name":"Sattler","first_name":"Florian"},{"last_name":"Schiebel","orcid":"0009-0008-6867-9802","full_name":"Schiebel, Fabian Benedikt","id":"55745","first_name":"Fabian Benedikt"},{"orcid":"0000-0001-9848-2017","last_name":"Hermann","full_name":"Hermann, Ben","id":"66173","first_name":"Ben"},{"orcid":"0000-0003-3470-3647","last_name":"Bodden","full_name":"Bodden, Eric","id":"59256","first_name":"Eric"}],"date_created":"2021-10-18T12:50:35Z","title":"Modeling the Effects of Global Variables in Data-Flow Analysis for C/C++","publication":"2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM)","type":"conference","status":"public","_id":"26405","project":[{"name":"SFB 901 - B4: SFB 901 - Subproject B4","_id":"12"},{"_id":"3","name":"SFB 901 - B: SFB 901 - Project Area B"},{"name":"SFB 901: SFB 901: On-The-Fly Computing - Individualisierte IT-Dienstleistungen in dynamischen Märkten ","_id":"1"}],"department":[{"_id":"76"}],"user_id":"15249","language":[{"iso":"eng"}]},{"publication":"Journal of Systems and Software","type":"journal_article","status":"public","_id":"20507","department":[{"_id":"76"}],"user_id":"5786","language":[{"iso":"eng"}],"publication_identifier":{"issn":["0164-1212"]},"year":"2020","intvolume":" 169","page":"110697","citation":{"apa":"Geismann, J., & Bodden, E. (2020). A systematic literature review of model-driven security engineering for cyber–physical systems. Journal of Systems and Software, 169, 110697. https://doi.org/10.1016/j.jss.2020.110697","bibtex":"@article{Geismann_Bodden_2020, title={A systematic literature review of model-driven security engineering for cyber–physical systems}, volume={169}, DOI={https://doi.org/10.1016/j.jss.2020.110697}, journal={Journal of Systems and Software}, author={Geismann, Johannes and Bodden, Eric}, year={2020}, pages={110697} }","short":"J. Geismann, E. Bodden, Journal of Systems and Software 169 (2020) 110697.","mla":"Geismann, Johannes, and Eric Bodden. “A Systematic Literature Review of Model-Driven Security Engineering for Cyber–Physical Systems.” Journal of Systems and Software, vol. 169, 2020, p. 110697, doi:https://doi.org/10.1016/j.jss.2020.110697.","ama":"Geismann J, Bodden E. A systematic literature review of model-driven security engineering for cyber–physical systems. Journal of Systems and Software. 2020;169:110697. doi:https://doi.org/10.1016/j.jss.2020.110697","chicago":"Geismann, Johannes, and Eric Bodden. “A Systematic Literature Review of Model-Driven Security Engineering for Cyber–Physical Systems.” Journal of Systems and Software 169 (2020): 110697. https://doi.org/10.1016/j.jss.2020.110697.","ieee":"J. Geismann and E. Bodden, “A systematic literature review of model-driven security engineering for cyber–physical systems,” Journal of Systems and Software, vol. 169, p. 110697, 2020, doi: https://doi.org/10.1016/j.jss.2020.110697."},"date_updated":"2022-01-06T06:54:29Z","volume":169,"author":[{"first_name":"Johannes","full_name":"Geismann, Johannes","id":"20063","last_name":"Geismann","orcid":"https://orcid.org/0000-0003-2015-2047"},{"first_name":"Eric","full_name":"Bodden, Eric","id":"59256","orcid":"0000-0003-3470-3647","last_name":"Bodden"}],"date_created":"2020-11-26T08:32:56Z","title":"A systematic literature review of model-driven security engineering for cyber–physical systems","doi":"https://doi.org/10.1016/j.jss.2020.110697"},{"author":[{"last_name":"Fischer","full_name":"Fischer, Andreas","first_name":"Andreas"},{"last_name":"Janneck","full_name":"Janneck, Jonas","first_name":"Jonas"},{"first_name":"Jörn","full_name":"Kussmaul, Jörn","last_name":"Kussmaul"},{"last_name":"Krätzschmar","full_name":"Krätzschmar, Nikolas","first_name":"Nikolas"},{"first_name":"Florian","full_name":"Kerschbaum, Florian","last_name":"Kerschbaum"},{"first_name":"Eric","last_name":"Bodden","orcid":"0000-0003-3470-3647","id":"59256","full_name":"Bodden, Eric"}],"date_created":"2020-11-26T08:40:08Z","date_updated":"2022-01-06T06:54:29Z","main_file_link":[{"url":"http://www.bodden.de/pubs/fjk+20pasapto.pdf"}],"title":"PASAPTO: Policy-aware Security and Performance Trade-off Analysis - Computation on Encrypted Data with Restricted Leakage","citation":{"ieee":"A. Fischer, J. Janneck, J. Kussmaul, N. Krätzschmar, F. Kerschbaum, and E. Bodden, “PASAPTO: Policy-aware Security and Performance Trade-off Analysis - Computation on Encrypted Data with Restricted Leakage,” 2020.","chicago":"Fischer, Andreas, Jonas Janneck, Jörn Kussmaul, Nikolas Krätzschmar, Florian Kerschbaum, and Eric Bodden. “PASAPTO: Policy-Aware Security and Performance Trade-off Analysis - Computation on Encrypted Data with Restricted Leakage.” In 2020 IEEE Computer Security Foundations Symposium (CSF), 2020.","ama":"Fischer A, Janneck J, Kussmaul J, Krätzschmar N, Kerschbaum F, Bodden E. PASAPTO: Policy-aware Security and Performance Trade-off Analysis - Computation on Encrypted Data with Restricted Leakage. In: 2020 IEEE Computer Security Foundations Symposium (CSF). ; 2020.","apa":"Fischer, A., Janneck, J., Kussmaul, J., Krätzschmar, N., Kerschbaum, F., & Bodden, E. (2020). PASAPTO: Policy-aware Security and Performance Trade-off Analysis - Computation on Encrypted Data with Restricted Leakage. 2020 IEEE Computer Security Foundations Symposium (CSF).","short":"A. Fischer, J. Janneck, J. Kussmaul, N. Krätzschmar, F. Kerschbaum, E. Bodden, in: 2020 IEEE Computer Security Foundations Symposium (CSF), 2020.","bibtex":"@inproceedings{Fischer_Janneck_Kussmaul_Krätzschmar_Kerschbaum_Bodden_2020, title={PASAPTO: Policy-aware Security and Performance Trade-off Analysis - Computation on Encrypted Data with Restricted Leakage}, booktitle={2020 IEEE Computer Security Foundations Symposium (CSF)}, author={Fischer, Andreas and Janneck, Jonas and Kussmaul, Jörn and Krätzschmar, Nikolas and Kerschbaum, Florian and Bodden, Eric}, year={2020} }","mla":"Fischer, Andreas, et al. “PASAPTO: Policy-Aware Security and Performance Trade-off Analysis - Computation on Encrypted Data with Restricted Leakage.” 2020 IEEE Computer Security Foundations Symposium (CSF), 2020."},"year":"2020","department":[{"_id":"76"}],"user_id":"5786","_id":"20509","language":[{"iso":"eng"}],"publication":"2020 IEEE Computer Security Foundations Symposium (CSF)","type":"conference","status":"public"},{"type":"conference","publication":"Privacy Enhancing Technologies Symposium (PETS/PoPETS)","status":"public","_id":"20511","user_id":"5786","department":[{"_id":"76"}],"language":[{"iso":"eng"}],"year":"2020","citation":{"ieee":"A. Fischer, B. Fuhry, F. Kerschbaum, and E. Bodden, “Computation on Encrypted Data using Dataflow Authentication,” 2020.","chicago":"Fischer, Andreas, Benny Fuhry, Florian Kerschbaum, and Eric Bodden. “Computation on Encrypted Data Using Dataflow Authentication.” In Privacy Enhancing Technologies Symposium (PETS/PoPETS), 2020.","ama":"Fischer A, Fuhry B, Kerschbaum F, Bodden E. Computation on Encrypted Data using Dataflow Authentication. In: Privacy Enhancing Technologies Symposium (PETS/PoPETS). ; 2020.","apa":"Fischer, A., Fuhry, B., Kerschbaum, F., & Bodden, E. (2020). Computation on Encrypted Data using Dataflow Authentication. Privacy Enhancing Technologies Symposium (PETS/PoPETS).","bibtex":"@inproceedings{Fischer_Fuhry_Kerschbaum_Bodden_2020, title={Computation on Encrypted Data using Dataflow Authentication}, booktitle={Privacy Enhancing Technologies Symposium (PETS/PoPETS)}, author={Fischer, Andreas and Fuhry, Benny and Kerschbaum, Florian and Bodden, Eric}, year={2020} }","mla":"Fischer, Andreas, et al. “Computation on Encrypted Data Using Dataflow Authentication.” Privacy Enhancing Technologies Symposium (PETS/PoPETS), 2020.","short":"A. Fischer, B. Fuhry, F. Kerschbaum, E. Bodden, in: Privacy Enhancing Technologies Symposium (PETS/PoPETS), 2020."},"date_updated":"2022-01-06T06:54:29Z","author":[{"full_name":"Fischer, Andreas","last_name":"Fischer","first_name":"Andreas"},{"first_name":"Benny","last_name":"Fuhry","full_name":"Fuhry, Benny"},{"full_name":"Kerschbaum, Florian","last_name":"Kerschbaum","first_name":"Florian"},{"last_name":"Bodden","orcid":"0000-0003-3470-3647","id":"59256","full_name":"Bodden, Eric","first_name":"Eric"}],"date_created":"2020-11-26T08:50:59Z","title":"Computation on Encrypted Data using Dataflow Authentication","main_file_link":[{"url":"http://www.bodden.de/pubs/ffk+20computation.pdf"}]},{"status":"public","publication":"International Symposium on Code Generation and Optimization (CGO)","type":"conference","language":[{"iso":"eng"}],"department":[{"_id":"76"}],"user_id":"5786","_id":"20512","page":"185-198","citation":{"chicago":"Krüger, Stefan, Karim Ali, and Eric Bodden. “CogniCrypt_GEN - Generating Code for the Secure Usage of Crypto APIs.” In International Symposium on Code Generation and Optimization (CGO), 185–98, 2020.","ieee":"S. Krüger, K. Ali, and E. Bodden, “CogniCrypt_GEN - Generating Code for the Secure Usage of Crypto APIs,” in International Symposium on Code Generation and Optimization (CGO), 2020, pp. 185–198.","ama":"Krüger S, Ali K, Bodden E. CogniCrypt_GEN - Generating Code for the Secure Usage of Crypto APIs. In: International Symposium on Code Generation and Optimization (CGO). ; 2020:185-198.","apa":"Krüger, S., Ali, K., & Bodden, E. (2020). CogniCrypt_GEN - Generating Code for the Secure Usage of Crypto APIs. International Symposium on Code Generation and Optimization (CGO), 185–198.","mla":"Krüger, Stefan, et al. “CogniCrypt_GEN - Generating Code for the Secure Usage of Crypto APIs.” International Symposium on Code Generation and Optimization (CGO), 2020, pp. 185–98.","bibtex":"@inproceedings{Krüger_Ali_Bodden_2020, title={CogniCrypt_GEN - Generating Code for the Secure Usage of Crypto APIs}, booktitle={International Symposium on Code Generation and Optimization (CGO)}, author={Krüger, Stefan and Ali, Karim and Bodden, Eric}, year={2020}, pages={185–198} }","short":"S. Krüger, K. Ali, E. Bodden, in: International Symposium on Code Generation and Optimization (CGO), 2020, pp. 185–198."},"year":"2020","related_material":{"link":[{"relation":"confirmation","url":"http://www.bodden.de/pubs/krueger20cognicryptgen.pdf"}]},"title":"CogniCrypt_GEN - Generating Code for the Secure Usage of Crypto APIs","author":[{"full_name":"Krüger, Stefan","last_name":"Krüger","first_name":"Stefan"},{"first_name":"Karim","full_name":"Ali, Karim","last_name":"Ali"},{"first_name":"Eric","last_name":"Bodden","full_name":"Bodden, Eric"}],"date_created":"2020-11-26T08:51:01Z","date_updated":"2022-01-06T06:54:29Z"},{"user_id":"5786","department":[{"_id":"76"}],"_id":"20513","language":[{"iso":"eng"}],"type":"dissertation","status":"public","abstract":[{"text":"Frühere Studien haben empirisch offenbart, dass Fehlbenutzungen von kryptographischen APIs in Softwareanwendungen weitverbreitet sind. Dies geschieht vor allem, weil Software-Entwickler_innen aufgrund schlechten API-Designs und fehlenden Kryptographiewissens Probleme bekommen, wenn sie versuchen kryptographische Features zu implementieren. Die Literatur liefert mehrere Ansätze und Vorschläge diese Probleme zu lösen, aber alle scheitern schlussendlich auf die eine oder andere Weise daran die Anforderungen der Entwickler_innenzu erfüllen. Das Resultat ist eine insgesamt lückenhafte Landschaft verschiedener nur wenigkomplementärer Ansätze.In dieser Arbeit adressieren wir das Problem kryptographischer Fehlbenutzungen systematischer durch CogniCrypt. CogniCrypt integriert verschiedene Arten von Tool Supportin einen gemeinsamen Ansatz, der Entwickler_innen davon befreit wissen zu müssen, wie diese APIs benutzt werden müssen. Zentral für unseren Ansatz ist CrySL, eine Beschreibungssprache,die die kognitive Lücke zwischen Kryptographie-Expert_innen und Software-Entwickler_innenüberbrückt. CrySL ermöglicht es Kryptographie-Expert_innen zu spezifizeren, wie die APIs,die sie bereitstellen, richtig benutzt werden. Wir haben einen Compiler für CrySL implementiert, der es erlaubt auf CrySL-Spezifikationen aufbauenden Tool Support zu entwickeln. Wir haben weiterhin die statische Analyse CogniCrypt_SAST und den Code-Generator CogniCrypt_GEN entwickelt. Schlussendlich haben wir CogniCrypt prototypisch implementiert und diesen Prototyp in einem kontrollierten Experiment evaluiert.\r\n","lang":"ger"}],"date_created":"2020-11-26T09:02:19Z","author":[{"full_name":"Krüger, Stefan","last_name":"Krüger","first_name":"Stefan"}],"supervisor":[{"first_name":"Eric","id":"59256","full_name":"Bodden, Eric","orcid":"0000-0003-3470-3647","last_name":"Bodden"}],"date_updated":"2022-01-06T06:54:29Z","publisher":"Universitaetsbibliothek Paderborn","main_file_link":[{"url":"https://digital.ub.uni-paderborn.de/hs/document/preview/3500836"}],"title":"CogniCrypt -- The Secure Integration of Cryptographic Software","citation":{"short":"S. Krüger, CogniCrypt -- The Secure Integration of Cryptographic Software, Universitaetsbibliothek Paderborn, 2020.","bibtex":"@book{Krüger_2020, title={CogniCrypt -- The Secure Integration of Cryptographic Software}, publisher={Universitaetsbibliothek Paderborn}, author={Krüger, Stefan}, year={2020} }","mla":"Krüger, Stefan. CogniCrypt -- The Secure Integration of Cryptographic Software. Universitaetsbibliothek Paderborn, 2020.","apa":"Krüger, S. (2020). CogniCrypt -- The Secure Integration of Cryptographic Software. Universitaetsbibliothek Paderborn.","ama":"Krüger S. CogniCrypt -- The Secure Integration of Cryptographic Software. Universitaetsbibliothek Paderborn; 2020.","ieee":"S. Krüger, CogniCrypt -- The Secure Integration of Cryptographic Software. Universitaetsbibliothek Paderborn, 2020.","chicago":"Krüger, Stefan. CogniCrypt -- The Secure Integration of Cryptographic Software. Universitaetsbibliothek Paderborn, 2020."},"year":"2020"},{"author":[{"full_name":"Koch, Thorsten","id":"13616","last_name":"Koch","first_name":"Thorsten"},{"first_name":"Stefan","last_name":"Dziwok","orcid":"http://orcid.org/0000-0002-8679-6673","full_name":"Dziwok, Stefan","id":"3901"},{"id":"3875","full_name":"Holtmann, Jörg","orcid":"0000-0001-6141-4571","last_name":"Holtmann","first_name":"Jörg"},{"first_name":"Eric","last_name":"Bodden","orcid":"0000-0003-3470-3647","full_name":"Bodden, Eric","id":"59256"}],"date_created":"2020-11-26T10:19:54Z","publisher":"ACM","date_updated":"2022-01-06T06:54:29Z","doi":"10.1145/3365438.3410946","title":"Scenario-based Specification of Security Protocols and Transformation to Security Model Checkers","citation":{"ama":"Koch T, Dziwok S, Holtmann J, Bodden E. Scenario-based Specification of Security Protocols and Transformation to Security Model Checkers. In: ACM/IEEE 23rd International Conference on Model Driven Engineering Languages and Systems (MODELS ’20). ACM; 2020. doi:10.1145/3365438.3410946","chicago":"Koch, Thorsten, Stefan Dziwok, Jörg Holtmann, and Eric Bodden. “Scenario-Based Specification of Security Protocols and Transformation to Security Model Checkers.” In ACM/IEEE 23rd International Conference on Model Driven Engineering Languages and Systems (MODELS ’20). ACM, 2020. https://doi.org/10.1145/3365438.3410946.","ieee":"T. Koch, S. Dziwok, J. Holtmann, and E. Bodden, “Scenario-based Specification of Security Protocols and Transformation to Security Model Checkers,” 2020, doi: 10.1145/3365438.3410946.","short":"T. Koch, S. Dziwok, J. Holtmann, E. Bodden, in: ACM/IEEE 23rd International Conference on Model Driven Engineering Languages and Systems (MODELS ’20), ACM, 2020.","mla":"Koch, Thorsten, et al. “Scenario-Based Specification of Security Protocols and Transformation to Security Model Checkers.” ACM/IEEE 23rd International Conference on Model Driven Engineering Languages and Systems (MODELS ’20), ACM, 2020, doi:10.1145/3365438.3410946.","bibtex":"@inproceedings{Koch_Dziwok_Holtmann_Bodden_2020, title={Scenario-based Specification of Security Protocols and Transformation to Security Model Checkers}, DOI={10.1145/3365438.3410946}, booktitle={ACM/IEEE 23rd International Conference on Model Driven Engineering Languages and Systems (MODELS ’20)}, publisher={ACM}, author={Koch, Thorsten and Dziwok, Stefan and Holtmann, Jörg and Bodden, Eric}, year={2020} }","apa":"Koch, T., Dziwok, S., Holtmann, J., & Bodden, E. (2020). Scenario-based Specification of Security Protocols and Transformation to Security Model Checkers. ACM/IEEE 23rd International Conference on Model Driven Engineering Languages and Systems (MODELS ’20). https://doi.org/10.1145/3365438.3410946"},"year":"2020","department":[{"_id":"76"},{"_id":"241"},{"_id":"662"}],"user_id":"5786","_id":"20518","language":[{"iso":"eng"}],"publication":"ACM/IEEE 23rd International Conference on Model Driven Engineering Languages and Systems (MODELS ’20)","type":"conference","status":"public"},{"language":[{"iso":"eng"}],"_id":"20521","user_id":"5786","department":[{"_id":"76"}],"status":"public","type":"dissertation","title":"Model-Driven Information Flow Security Engineering for Cyber-Physical Systems","doi":"10.17619/UNIPB/1-1033","date_updated":"2022-01-06T06:54:29Z","publisher":"Paderborn University","date_created":"2020-11-26T10:37:17Z","supervisor":[{"orcid":"0000-0003-3470-3647","last_name":"Bodden","id":"59256","full_name":"Bodden, Eric","first_name":"Eric"}],"author":[{"first_name":"Christopher","full_name":"Gerking, Christopher","last_name":"Gerking"}],"year":"2020","citation":{"mla":"Gerking, Christopher. Model-Driven Information Flow Security Engineering for Cyber-Physical Systems. Paderborn University, 2020, doi:10.17619/UNIPB/1-1033.","short":"C. Gerking, Model-Driven Information Flow Security Engineering for Cyber-Physical Systems, Paderborn University, 2020.","bibtex":"@book{Gerking_2020, title={Model-Driven Information Flow Security Engineering for Cyber-Physical Systems}, DOI={10.17619/UNIPB/1-1033}, publisher={Paderborn University}, author={Gerking, Christopher}, year={2020} }","apa":"Gerking, C. (2020). Model-Driven Information Flow Security Engineering for Cyber-Physical Systems. Paderborn University. https://doi.org/10.17619/UNIPB/1-1033","ama":"Gerking C. Model-Driven Information Flow Security Engineering for Cyber-Physical Systems. Paderborn University; 2020. doi:10.17619/UNIPB/1-1033","ieee":"C. Gerking, Model-Driven Information Flow Security Engineering for Cyber-Physical Systems. Paderborn University, 2020.","chicago":"Gerking, Christopher. Model-Driven Information Flow Security Engineering for Cyber-Physical Systems. Paderborn University, 2020. https://doi.org/10.17619/UNIPB/1-1033."}},{"title":"Accelerating Static Call-Graph, Points-to and Data-Flow Analysis Through Persisted Summaries","author":[{"first_name":"Philipp","full_name":"Schubert, Philipp","id":"60543","last_name":"Schubert","orcid":"0000-0002-8674-1859"},{"first_name":"Eric","orcid":"0000-0003-3470-3647","last_name":"Bodden","full_name":"Bodden, Eric","id":"59256"},{"id":"66173","full_name":"Hermann, Ben","last_name":"Hermann","orcid":"0000-0001-9848-2017","first_name":"Ben"}],"date_created":"2020-12-14T07:44:11Z","date_updated":"2022-01-06T06:54:34Z","citation":{"ama":"Schubert P, Bodden E, Hermann B. Accelerating Static Call-Graph, Points-to and Data-Flow Analysis Through Persisted Summaries.; 2020.","chicago":"Schubert, Philipp, Eric Bodden, and Ben Hermann. Accelerating Static Call-Graph, Points-to and Data-Flow Analysis Through Persisted Summaries, 2020.","ieee":"P. Schubert, E. Bodden, and B. Hermann, Accelerating Static Call-Graph, Points-to and Data-Flow Analysis Through Persisted Summaries. 2020.","mla":"Schubert, Philipp, et al. Accelerating Static Call-Graph, Points-to and Data-Flow Analysis Through Persisted Summaries. 2020.","bibtex":"@book{Schubert_Bodden_Hermann_2020, title={Accelerating Static Call-Graph, Points-to and Data-Flow Analysis Through Persisted Summaries}, author={Schubert, Philipp and Bodden, Eric and Hermann, Ben}, year={2020} }","short":"P. Schubert, E. Bodden, B. Hermann, Accelerating Static Call-Graph, Points-to and Data-Flow Analysis Through Persisted Summaries, 2020.","apa":"Schubert, P., Bodden, E., & Hermann, B. (2020). Accelerating Static Call-Graph, Points-to and Data-Flow Analysis Through Persisted Summaries."},"year":"2020","has_accepted_license":"1","file_date_updated":"2020-12-14T07:39:07Z","language":[{"iso":"eng"}],"ddc":["000"],"department":[{"_id":"76"}],"user_id":"477","_id":"20712","project":[{"name":"SFB 901","_id":"1"},{"_id":"3","name":"SFB 901 - Project Area B"},{"_id":"12","name":"SFB 901 - Subproject B4"}],"status":"public","file":[{"success":1,"relation":"main_file","content_type":"application/pdf","file_size":683576,"file_name":"main.pdf","file_id":"20713","access_level":"closed","date_updated":"2020-12-14T07:39:07Z","creator":"pdschbrt","date_created":"2020-12-14T07:39:07Z"}],"type":"report"},{"publication":"Lecture Notes in Computer Science","type":"book_chapter","abstract":[{"text":"Today, software systems are rarely developed monolithically, but may be composed of numerous individually developed features. Their modularization facilitates independent development and verification. While feature-based strategies to verify features in isolation have existed for years, they cannot address interactions between features. The problem with feature interactions is that they are typically unknown and may involve any subset of the features. Contrary, a family-based verification strategy captures feature interactions, but does not scale well when features evolve frequently. To the best of our knowledge, there currently exists no approach with focus on evolving features that combines both strategies and aims at eliminating their respective drawbacks. To fill this gap, we introduce Fefalution, a feature-family-based verification approach based on abstract contracts to verify evolving features and their interactions. Fefalution builds partial proofs for each evolving feature and then reuses the resulting partial proofs in verifying feature interactions, yielding a full verification of the complete software system. Moreover, to investigate whether a combination of both strategies is fruitful, we present the first empirical study for the verification of evolving features implemented by means of feature-oriented programming and by comparing Fefalution with another five family-based approaches varying in a set of optimizations. Our results indicate that partial proofs based on abstract contracts exhibit huge reuse potential, but also come with a substantial overhead for smaller evolution scenarios.\r\n","lang":"eng"}],"status":"public","_id":"20891","department":[{"_id":"76"}],"user_id":"5786","language":[{"iso":"eng"}],"publication_identifier":{"issn":["0302-9743","1611-3349"],"isbn":["9783030643539","9783030643546"]},"publication_status":"published","place":"Cham","year":"2020","citation":{"ama":"Knüppel A, Krüger S, Thüm T, et al. Using Abstract Contracts for Verifying Evolving Features and Their Interactions. In: Lecture Notes in Computer Science. ; 2020. doi:10.1007/978-3-030-64354-6_5","chicago":"Knüppel, Alexander, Stefan Krüger, Thomas Thüm, Richard Bubel, Sebastian Krieter, Eric Bodden, and Ina Schaefer. “Using Abstract Contracts for Verifying Evolving Features and Their Interactions.” In Lecture Notes in Computer Science. Cham, 2020. https://doi.org/10.1007/978-3-030-64354-6_5.","ieee":"A. Knüppel et al., “Using Abstract Contracts for Verifying Evolving Features and Their Interactions,” in Lecture Notes in Computer Science, Cham, 2020.","short":"A. Knüppel, S. Krüger, T. Thüm, R. Bubel, S. Krieter, E. Bodden, I. Schaefer, in: Lecture Notes in Computer Science, Cham, 2020.","bibtex":"@inbook{Knüppel_Krüger_Thüm_Bubel_Krieter_Bodden_Schaefer_2020, place={Cham}, title={Using Abstract Contracts for Verifying Evolving Features and Their Interactions}, DOI={10.1007/978-3-030-64354-6_5}, booktitle={Lecture Notes in Computer Science}, author={Knüppel, Alexander and Krüger, Stefan and Thüm, Thomas and Bubel, Richard and Krieter, Sebastian and Bodden, Eric and Schaefer, Ina}, year={2020} }","mla":"Knüppel, Alexander, et al. “Using Abstract Contracts for Verifying Evolving Features and Their Interactions.” Lecture Notes in Computer Science, 2020, doi:10.1007/978-3-030-64354-6_5.","apa":"Knüppel, A., Krüger, S., Thüm, T., Bubel, R., Krieter, S., Bodden, E., & Schaefer, I. (2020). Using Abstract Contracts for Verifying Evolving Features and Their Interactions. In Lecture Notes in Computer Science. https://doi.org/10.1007/978-3-030-64354-6_5"},"date_updated":"2022-01-06T06:54:41Z","author":[{"last_name":"Knüppel","full_name":"Knüppel, Alexander","first_name":"Alexander"},{"first_name":"Stefan","full_name":"Krüger, Stefan","last_name":"Krüger"},{"first_name":"Thomas","last_name":"Thüm","full_name":"Thüm, Thomas"},{"first_name":"Richard","full_name":"Bubel, Richard","last_name":"Bubel"},{"full_name":"Krieter, Sebastian","last_name":"Krieter","first_name":"Sebastian"},{"first_name":"Eric","full_name":"Bodden, Eric","id":"59256","orcid":"0000-0003-3470-3647","last_name":"Bodden"},{"first_name":"Ina","last_name":"Schaefer","full_name":"Schaefer, Ina"}],"date_created":"2021-01-11T09:15:41Z","title":"Using Abstract Contracts for Verifying Evolving Features and Their Interactions","doi":"10.1007/978-3-030-64354-6_5"},{"publication":"2019 34th IEEE/ACM International Conference on Automated Software Engineering (ASE)","type":"conference","status":"public","department":[{"_id":"241"},{"_id":"662"},{"_id":"76"}],"user_id":"5786","_id":"23376","language":[{"iso":"eng"}],"publication_status":"published","citation":{"chicago":"Piskachev, Goran, Lisa Nguyen Quang Do, Oshando Johnson, and Eric Bodden. “SWAN_ASSIST: Semi-Automated Detection of Code-Specific, Security-Relevant Methods.” In 2019 34th IEEE/ACM International Conference on Automated Software Engineering (ASE), 2020. https://doi.org/10.1109/ase.2019.00110.","ieee":"G. Piskachev, L. Nguyen Quang Do, O. Johnson, and E. Bodden, “SWAN_ASSIST: Semi-Automated Detection of Code-Specific, Security-Relevant Methods,” 2020, doi: 10.1109/ase.2019.00110.","ama":"Piskachev G, Nguyen Quang Do L, Johnson O, Bodden E. SWAN_ASSIST: Semi-Automated Detection of Code-Specific, Security-Relevant Methods. In: 2019 34th IEEE/ACM International Conference on Automated Software Engineering (ASE). ; 2020. doi:10.1109/ase.2019.00110","apa":"Piskachev, G., Nguyen Quang Do, L., Johnson, O., & Bodden, E. (2020). SWAN_ASSIST: Semi-Automated Detection of Code-Specific, Security-Relevant Methods. 2019 34th IEEE/ACM International Conference on Automated Software Engineering (ASE). https://doi.org/10.1109/ase.2019.00110","short":"G. Piskachev, L. Nguyen Quang Do, O. Johnson, E. Bodden, in: 2019 34th IEEE/ACM International Conference on Automated Software Engineering (ASE), 2020.","mla":"Piskachev, Goran, et al. “SWAN_ASSIST: Semi-Automated Detection of Code-Specific, Security-Relevant Methods.” 2019 34th IEEE/ACM International Conference on Automated Software Engineering (ASE), 2020, doi:10.1109/ase.2019.00110.","bibtex":"@inproceedings{Piskachev_Nguyen Quang Do_Johnson_Bodden_2020, title={SWAN_ASSIST: Semi-Automated Detection of Code-Specific, Security-Relevant Methods}, DOI={10.1109/ase.2019.00110}, booktitle={2019 34th IEEE/ACM International Conference on Automated Software Engineering (ASE)}, author={Piskachev, Goran and Nguyen Quang Do, Lisa and Johnson, Oshando and Bodden, Eric}, year={2020} }"},"year":"2020","author":[{"first_name":"Goran","last_name":"Piskachev","full_name":"Piskachev, Goran"},{"full_name":"Nguyen Quang Do, Lisa","last_name":"Nguyen Quang Do","first_name":"Lisa"},{"last_name":"Johnson","full_name":"Johnson, Oshando","first_name":"Oshando"},{"full_name":"Bodden, Eric","last_name":"Bodden","first_name":"Eric"}],"date_created":"2021-08-09T12:03:30Z","date_updated":"2022-01-06T06:55:50Z","doi":"10.1109/ase.2019.00110","title":"SWAN_ASSIST: Semi-Automated Detection of Code-Specific, Security-Relevant Methods"},{"language":[{"iso":"eng"}],"department":[{"_id":"241"},{"_id":"662"},{"_id":"76"}],"user_id":"5786","_id":"23377","status":"public","publication":"Lecture Notes in Computer Science","type":"book_chapter","doi":"10.1007/978-3-030-54997-8_34","title":"AuthCheck: Program-State Analysis for Access-Control Vulnerabilities","author":[{"first_name":"Goran","last_name":"Piskachev","full_name":"Piskachev, Goran"},{"first_name":"Tobias","last_name":"Petrasch","full_name":"Petrasch, Tobias"},{"full_name":"Späth, Johannes","last_name":"Späth","first_name":"Johannes"},{"first_name":"Eric","last_name":"Bodden","full_name":"Bodden, Eric"}],"date_created":"2021-08-09T12:05:09Z","date_updated":"2022-01-06T06:55:50Z","citation":{"apa":"Piskachev, G., Petrasch, T., Späth, J., & Bodden, E. (2020). AuthCheck: Program-State Analysis for Access-Control Vulnerabilities. In Lecture Notes in Computer Science. https://doi.org/10.1007/978-3-030-54997-8_34","mla":"Piskachev, Goran, et al. “AuthCheck: Program-State Analysis for Access-Control Vulnerabilities.” Lecture Notes in Computer Science, 2020, doi:10.1007/978-3-030-54997-8_34.","bibtex":"@inbook{Piskachev_Petrasch_Späth_Bodden_2020, place={Cham}, title={AuthCheck: Program-State Analysis for Access-Control Vulnerabilities}, DOI={10.1007/978-3-030-54997-8_34}, booktitle={Lecture Notes in Computer Science}, author={Piskachev, Goran and Petrasch, Tobias and Späth, Johannes and Bodden, Eric}, year={2020} }","short":"G. Piskachev, T. Petrasch, J. Späth, E. Bodden, in: Lecture Notes in Computer Science, Cham, 2020.","ama":"Piskachev G, Petrasch T, Späth J, Bodden E. AuthCheck: Program-State Analysis for Access-Control Vulnerabilities. In: Lecture Notes in Computer Science. ; 2020. doi:10.1007/978-3-030-54997-8_34","chicago":"Piskachev, Goran, Tobias Petrasch, Johannes Späth, and Eric Bodden. “AuthCheck: Program-State Analysis for Access-Control Vulnerabilities.” In Lecture Notes in Computer Science. Cham, 2020. https://doi.org/10.1007/978-3-030-54997-8_34.","ieee":"G. Piskachev, T. Petrasch, J. Späth, and E. Bodden, “AuthCheck: Program-State Analysis for Access-Control Vulnerabilities,” in Lecture Notes in Computer Science, Cham, 2020."},"year":"2020","place":"Cham","publication_identifier":{"issn":["0302-9743","1611-3349"]},"publication_status":"published"},{"year":"2020","status":"public","citation":{"apa":"Benz, M., Krogh Kristensen, E., Luo, L., P. Borges Jr., N., Bodden, E., & Zeller, A. (2020). Heaps’n Leaks: How Heap Snapshots Improve Android Taint Analysis. International Conference for Software Engineering (ICSE).","short":"M. Benz, E. Krogh Kristensen, L. Luo, N. P. Borges Jr., E. Bodden, A. Zeller, in: International Conference for Software Engineering (ICSE), 2020.","bibtex":"@inproceedings{Benz_Krogh Kristensen_Luo_P. Borges Jr._Bodden_Zeller_2020, title={Heaps’n Leaks: How Heap Snapshots Improve Android Taint Analysis}, booktitle={International Conference for Software Engineering (ICSE)}, author={Benz, Manuel and Krogh Kristensen, Erik and Luo, Linghui and P. Borges Jr., Nataniel and Bodden, Eric and Zeller, Andreas}, year={2020} }","mla":"Benz, Manuel, et al. “Heaps’n Leaks: How Heap Snapshots Improve Android Taint Analysis.” International Conference for Software Engineering (ICSE), 2020.","chicago":"Benz, Manuel, Erik Krogh Kristensen, Linghui Luo, Nataniel P. Borges Jr., Eric Bodden, and Andreas Zeller. “Heaps’n Leaks: How Heap Snapshots Improve Android Taint Analysis.” In International Conference for Software Engineering (ICSE), 2020.","ieee":"M. Benz, E. Krogh Kristensen, L. Luo, N. P. Borges Jr., E. Bodden, and A. Zeller, “Heaps’n Leaks: How Heap Snapshots Improve Android Taint Analysis,” 2020.","ama":"Benz M, Krogh Kristensen E, Luo L, P. Borges Jr. N, Bodden E, Zeller A. Heaps’n Leaks: How Heap Snapshots Improve Android Taint Analysis. In: International Conference for Software Engineering (ICSE). ; 2020."},"publication":"International Conference for Software Engineering (ICSE)","type":"conference","title":"Heaps'n Leaks: How Heap Snapshots Improve Android Taint Analysis","language":[{"iso":"eng"}],"_id":"20510","date_updated":"2025-04-07T10:24:14Z","department":[{"_id":"76"}],"author":[{"first_name":"Manuel","last_name":"Benz","full_name":"Benz, Manuel"},{"full_name":"Krogh Kristensen, Erik","last_name":"Krogh Kristensen","first_name":"Erik"},{"first_name":"Linghui","full_name":"Luo, Linghui","last_name":"Luo"},{"first_name":"Nataniel","last_name":"P. Borges Jr.","full_name":"P. Borges Jr., Nataniel"},{"full_name":"Bodden, Eric","id":"59256","last_name":"Bodden","orcid":"0000-0003-3470-3647","first_name":"Eric"},{"last_name":"Zeller","full_name":"Zeller, Andreas","first_name":"Andreas"}],"user_id":"15249","date_created":"2020-11-26T08:47:56Z"},{"department":[{"_id":"76"}],"user_id":"15249","_id":"20508","language":[{"iso":"eng"}],"publication":"IEEE Transactions on Software Engineering","type":"journal_article","status":"public","author":[{"first_name":"Lisa","last_name":"Nguyen Quang Do","full_name":"Nguyen Quang Do, Lisa"},{"first_name":"Eric","orcid":"0000-0003-3470-3647","last_name":"Bodden","full_name":"Bodden, Eric","id":"59256"}],"date_created":"2020-11-26T08:38:33Z","date_updated":"2025-04-07T10:22:44Z","main_file_link":[{"url":"http://www.bodden.de/pubs/tse20ruleGraphs.pdf"}],"title":"Explaining Static Analysis with Rule Graphs","citation":{"apa":"Nguyen Quang Do, L., & Bodden, E. (2020). Explaining Static Analysis with Rule Graphs. IEEE Transactions on Software Engineering.","mla":"Nguyen Quang Do, Lisa, and Eric Bodden. “Explaining Static Analysis with Rule Graphs.” IEEE Transactions on Software Engineering, 2020.","short":"L. Nguyen Quang Do, E. Bodden, IEEE Transactions on Software Engineering (2020).","bibtex":"@article{Nguyen Quang Do_Bodden_2020, title={Explaining Static Analysis with Rule Graphs}, journal={IEEE Transactions on Software Engineering}, author={Nguyen Quang Do, Lisa and Bodden, Eric}, year={2020} }","chicago":"Nguyen Quang Do, Lisa, and Eric Bodden. “Explaining Static Analysis with Rule Graphs.” IEEE Transactions on Software Engineering, 2020.","ieee":"L. Nguyen Quang Do and E. Bodden, “Explaining Static Analysis with Rule Graphs,” IEEE Transactions on Software Engineering, 2020.","ama":"Nguyen Quang Do L, Bodden E. Explaining Static Analysis with Rule Graphs. IEEE Transactions on Software Engineering. Published online 2020."},"year":"2020"}]