Please note that LibreCat no longer supports Internet Explorer versions 8 or 9 (or earlier).
We recommend upgrading to the latest Internet Explorer, Google Chrome, or Firefox.
210 Publications
2022 | Journal Article | LibreCat-ID: 33835
An In-depth Study of Java Deserialization Remote-Code Execution Exploits and Vulnerabilities
I. Sayar, A. Bartel, E. Bodden, Y. Le Traon, ACM Transactions on Software Engineering and Methodology (2022).
LibreCat
| DOI
I. Sayar, A. Bartel, E. Bodden, Y. Le Traon, ACM Transactions on Software Engineering and Methodology (2022).
2022 | Journal Article | LibreCat-ID: 33836
Fluently specifying taint-flow queries with fluentTQL
G. Piskachev, J. Späth, I. Budde, E. Bodden, Empirical Software Engineering 27 (2022) 1–33.
LibreCat
G. Piskachev, J. Späth, I. Budde, E. Bodden, Empirical Software Engineering 27 (2022) 1–33.
2022 | Conference Paper | LibreCat-ID: 33838
To what extent can we analyze Kotlin programs using existing Java taint analysis tools?
R. Krishnamurthy, G. Piskachev, E. Bodden, (2022).
LibreCat
R. Krishnamurthy, G. Piskachev, E. Bodden, (2022).
2022 | Conference Paper | LibreCat-ID: 33837
How far are German companies in improving security through static program analysis tools?
G. Piskachev, S. Dziwok, T. Koch, S. Merschjohann, E. Bodden, (2022).
LibreCat
G. Piskachev, S. Dziwok, T. Koch, S. Merschjohann, E. Bodden, (2022).
2022 | Misc | LibreCat-ID: 33959
To Fix or Not to Fix: A Critical Study of Crypto-misuses in the Wild
A.-K. Wickert, L. Baumgärtner, M. Schlichtig, M. Mezini, To Fix or Not to Fix: A Critical Study of Crypto-Misuses in the Wild, 2022.
LibreCat
| Files available
| DOI
A.-K. Wickert, L. Baumgärtner, M. Schlichtig, M. Mezini, To Fix or Not to Fix: A Critical Study of Crypto-Misuses in the Wild, 2022.
2022 | Journal Article | LibreCat-ID: 53952
“Free” as in Freedom to Protest?
F. Massacci, A. Sabetta, J. Mirkovic, T. Murray, H. Okhravi, M. Mannan, A. Rocha, E. Bodden, D.E. Geer, IEEE Security & Privacy 20 (2022) 16–21.
LibreCat
| DOI
F. Massacci, A. Sabetta, J. Mirkovic, T. Murray, H. Okhravi, M. Mannan, A. Rocha, E. Bodden, D.E. Geer, IEEE Security & Privacy 20 (2022) 16–21.
2021 | Journal Article | LibreCat-ID: 27045 | 
TaintBench: Automatic real-world malware benchmarking of Android taint analyses
L. Luo, F. Pauck, G. Piskachev, M. Benz, I. Pashchenko, M. Mory, E. Bodden, B. Hermann, F. Massacci, Empirical Software Engineering (2021).
LibreCat
| DOI
| Download (ext.)
L. Luo, F. Pauck, G. Piskachev, M. Benz, I. Pashchenko, M. Mory, E. Bodden, B. Hermann, F. Massacci, Empirical Software Engineering (2021).
2021 | Dissertation | LibreCat-ID: 27158
Improving Real-World Applicability of Static Taint Analysis
L. Luo, Improving Real-World Applicability of Static Taint Analysis, Universität Paderborn, 2021.
LibreCat
| Files available
L. Luo, Improving Real-World Applicability of Static Taint Analysis, Universität Paderborn, 2021.
2021 | Journal Article | LibreCat-ID: 21595
Using Architectural Runtime Verification for Offline Data Analysis
L. Stockmann, S. Laux, E. Bodden, Journal of Automotive Software Engineering (2021).
LibreCat
| DOI
| Download (ext.)
L. Stockmann, S. Laux, E. Bodden, Journal of Automotive Software Engineering (2021).
2021 | Dissertation | LibreCat-ID: 21596
Computing on Encrypted Data using Trusted Execution Environments
A. Fischer, Computing on Encrypted Data Using Trusted Execution Environments, Universität Paderborn, 2021.
LibreCat
| Download (ext.)
A. Fischer, Computing on Encrypted Data Using Trusted Execution Environments, Universität Paderborn, 2021.
2021 | Journal Article | LibreCat-ID: 21597
A Systematic Hardening of Java's Information Hiding
P. Holzinger, E. Bodden, International Symposium on Advanced Security on Software and Systems (ASSS) (2021).
LibreCat
| Download (ext.)
P. Holzinger, E. Bodden, International Symposium on Advanced Security on Software and Systems (ASSS) (2021).
2021 | Journal Article | LibreCat-ID: 21599
Dealing with Variability in API Misuse Specification
R. Bonifacio, S. Krüger, K. Narasimhan, E. Bodden, M. Mezini, European Conference on Object-Oriented Programming (ECOOP) (2021).
LibreCat
R. Bonifacio, S. Krüger, K. Narasimhan, E. Bodden, M. Mezini, European Conference on Object-Oriented Programming (ECOOP) (2021).
2021 | Conference Paper | LibreCat-ID: 22462
Automated Cell Header Generator for Jupyter Notebooks
A.P. Shivarpatna Venkatesh, E. Bodden, in: International Workshop on AI and Software Testing/Analysis (AISTA), 2021.
LibreCat
| DOI
A.P. Shivarpatna Venkatesh, E. Bodden, in: International Workshop on AI and Software Testing/Analysis (AISTA), 2021.
2021 | Conference Paper | LibreCat-ID: 23374
Qualitative and Quantitative Analysis of Callgraph Algorithms for Python
S. Kummita, G. Piskachev, J. Spath, E. Bodden, in: 2021 International Conference on Code Quality (ICCQ), 2021.
LibreCat
| DOI
S. Kummita, G. Piskachev, J. Spath, E. Bodden, in: 2021 International Conference on Code Quality (ICCQ), 2021.
2021 | Conference Paper | LibreCat-ID: 30084
SootFX: A Static Code Feature Extraction Tool for Java and Android
K. Karakaya, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), IEEE, 2021.
LibreCat
| DOI
K. Karakaya, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), IEEE, 2021.
2021 | Conference Paper | LibreCat-ID: 21598 |
Lossless, Persisted Summarization of Static Callgraph, Points-To and Data-Flow Analysis
P. Schubert, B. Hermann, E. Bodden, in: European Conference on Object-Oriented Programming (ECOOP), 2021.
LibreCat
| Download (ext.)
P. Schubert, B. Hermann, E. Bodden, in: European Conference on Object-Oriented Programming (ECOOP), 2021.
2021 | Journal Article | LibreCat-ID: 31132
Identifying Challenges for OSS Vulnerability Scanners - A Study & Test Suite
A.P. Dann, H. Plate, B. Hermann, S.E. Ponta, E. Bodden, IEEE Transactions on Software Engineering (2021) 1–1.
LibreCat
| DOI
A.P. Dann, H. Plate, B. Hermann, S.E. Ponta, E. Bodden, IEEE Transactions on Software Engineering (2021) 1–1.
2021 | Conference Paper | LibreCat-ID: 26407
SecuCheck: Engineering configurable taint analysis for software developers
G. Piskachev, R. Krishnamurthy, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021.
LibreCat
G. Piskachev, R. Krishnamurthy, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021.
2021 | Conference Paper | LibreCat-ID: 22463
IDE Support for Cloud-Based Static Analyses
L. Luo, M. Schäf, D. Sanchez, E. Bodden, in: Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, 2021.
LibreCat
L. Luo, M. Schäf, D. Sanchez, E. Bodden, in: Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, 2021.
2021 | Conference Paper | LibreCat-ID: 33840
SootFX: A Static Code Feature Extraction Tool for Java and Android
K. Karakaya, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021, pp. 181–186.
LibreCat
K. Karakaya, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021, pp. 181–186.
2021 | Conference Paper | LibreCat-ID: 26406
Into the Woods: Experiences from Building a Dataflow Analysis Framework for C/C++
P. Schubert, B. Hermann, E. Bodden, R. Leer, in: SCAM ’21: IEEE International Working Conference on Source Code Analysis and Manipulation (Engineering Track), 2021.
LibreCat
P. Schubert, B. Hermann, E. Bodden, R. Leer, in: SCAM ’21: IEEE International Working Conference on Source Code Analysis and Manipulation (Engineering Track), 2021.
2021 | Conference Paper | LibreCat-ID: 26405
Modeling the Effects of Global Variables in Data-Flow Analysis for C/C++
P. Schubert, F. Sattler, F. Schiebel, B. Hermann, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021.
LibreCat
P. Schubert, F. Sattler, F. Schiebel, B. Hermann, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021.
2020 | Journal Article | LibreCat-ID: 20507
A systematic literature review of model-driven security engineering for cyber–physical systems
J. Geismann, E. Bodden, Journal of Systems and Software 169 (2020) 110697.
LibreCat
| DOI
J. Geismann, E. Bodden, Journal of Systems and Software 169 (2020) 110697.
2020 | Journal Article | LibreCat-ID: 20508
Explaining Static Analysis with Rule Graphs
L. Nguyen Quang Do, E. Bodden, IEEE Transactions on Software Engineering (2020).
LibreCat
| Download (ext.)
L. Nguyen Quang Do, E. Bodden, IEEE Transactions on Software Engineering (2020).
2020 | Conference Paper | LibreCat-ID: 20509
PASAPTO: Policy-aware Security and Performance Trade-off Analysis - Computation on Encrypted Data with Restricted Leakage
A. Fischer, J. Janneck, J. Kussmaul, N. Krätzschmar, F. Kerschbaum, E. Bodden, in: 2020 IEEE Computer Security Foundations Symposium (CSF), 2020.
LibreCat
| Download (ext.)
A. Fischer, J. Janneck, J. Kussmaul, N. Krätzschmar, F. Kerschbaum, E. Bodden, in: 2020 IEEE Computer Security Foundations Symposium (CSF), 2020.