Please note that LibreCat no longer supports Internet Explorer versions 8 or 9 (or earlier).

We recommend upgrading to the latest Internet Explorer, Google Chrome, or Firefox.

205 Publications


2024 | Conference Paper | LibreCat-ID: 52235
Khedkar, M., & Bodden, E. (2024). Toward an Android Static Analysis Approach for Data Protection. Proceedings of the 9th International Conference on Mobile Software Engineering and Systems. 9th International Conference on Mobile Software Engineering and Systems 2024, Lisbon, Portugal.
LibreCat | Files available | arXiv
 

2024 | Journal Article | LibreCat-ID: 52587
Bodden, E., Pottebaum, J., Fockel, M., & Gräßler, I. (2024). Evaluating Security Through Isolation and Defense in Depth. IEEE Security & Privacy, 22(1), 69–72. https://doi.org/10.1109/msec.2023.3336028
LibreCat | DOI
 

2024 | Misc | LibreCat-ID: 52663
Wickert, A.-K., Schlichtig, M., Vogel, M., Winter, L., Mezini, M., & Bodden, E. (2024). Supporting Error Chains in Static Analysis for Precise Evaluation Results and Enhanced Usability.
LibreCat | Download (ext.)
 

2023 | Conference Paper | LibreCat-ID: 35083
Dann, A. P., Hermann, B., & Bodden, E. (2023). UpCy: Safely Updating Outdated Dependencies.
LibreCat
 

2023 | Conference Paper | LibreCat-ID: 41812
Luo, L., Piskachev, G., Krishnamurthy, R., Dolby, J., Schäf, M., & Bodden, E. (2023). Model Generation For Java Frameworks. IEEE International Conference on Software Testing, Verification and Validation (ICST).
LibreCat
 

2023 | Conference Paper | LibreCat-ID: 41813
Shivarpatna Venkatesh, A. P., Wang, J., Li, L., & Bodden, E. (2023). Enhancing Comprehension and Navigation in Jupyter Notebooks with Static Analysis. IEEE International Conference on Software Analysis, Evolution and Reengineering (SANER).
LibreCat
 

2023 | Conference Paper | LibreCat-ID: 45312
Karakaya, K., & Bodden, E. (2023). Two Sparsification Strategies for Accelerating Demand-Driven Pointer Analysis. 2023 IEEE Conference on Software Testing, Verification and Validation (ICST). https://doi.org/10.1109/icst57152.2023.00036
LibreCat | DOI
 

2023 | Journal Article | LibreCat-ID: 46816
Torres, A., Costa, P., Amaral, L., Pastro, J., Bonifácio, R., d’Amorim, M., Legunsen, O., Bodden, E., & Dias Canedo, E. (2023). Runtime Verification of Crypto APIs: An Empirical Study. IEEE Transactions on Software Engineering, 49(10), 4510–4525. https://doi.org/10.1109/tse.2023.3301660
LibreCat | DOI
 

2023 | Journal Article | LibreCat-ID: 49439
Piskachev, G., Becker, M., & Bodden, E. (2023). Can the configuration of static analyses make resolving security vulnerabilities more effective? - A user study. Empirical Software Engineering, 28(5), Article 118. https://doi.org/10.1007/s10664-023-10354-3
LibreCat | DOI
 

2023 | Conference Paper | LibreCat-ID: 49438
Krüger, S., Reif, M., Wickert, A.-K., Nadi, S., Ali, K., Bodden, E., Acar, Y., Mezini, M., & Fahl, S. (2023). Securing Your Crypto-API Usage Through Tool Support - A Usability Study. 2023 IEEE Secure Development Conference (SecDev). https://doi.org/10.1109/secdev56634.2023.00015
LibreCat | DOI
 

2023 | Journal Article | LibreCat-ID: 48946
Gräßler, I., Bodden, E., Wiechel, D., & Pottebaum, J. (2023). Defense-in-Depth als neues Paradigma der sicherheitsgerechten Produktentwicklung: interdisziplinäre, bedrohungsbewusste und lösungsorientierte Security. Konstruktion, 75(11–12), 60–65. https://doi.org/10.37544/0720-5953-2023-11-12-60
LibreCat | DOI
 

2023 | Conference Paper | LibreCat-ID: 44146
Khedkar, M. (n.d.). Static Analysis for Android GDPR Compliance Assurance. Proceedings of the 45th International Conference on Software Engineering: Companion Proceedings (ICSE ‘23). https://doi.org/10.1109/ICSE-Companion58688.2023.00054
LibreCat | Files available | DOI | arXiv
 

2023 | Book Chapter | LibreCat-ID: 52662
Nachtigall, M., Schlichtig, M., & Bodden, E. (2023). Evaluation of Usability Criteria Addressed by Static Analysis Tools on a Large Scale. In Software Engineering 2023 (pp. 95–96). Gesellschaft für Informatik e.V.
LibreCat | Download (ext.)
 

2023 | Book Chapter | LibreCat-ID: 52660
Schlichtig, M., Sassalla, S., Narasimhan, K., & Bodden, E. (2023). Introducing FUM: A Framework for API Usage Constraint and Misuse Classification. In Software Engineering 2023 (pp. 105–106). Gesellschaft für Informatik e.V.
LibreCat | Download (ext.)
 

2023 | Conference Paper | LibreCat-ID: 46500
Pottebaum, J., Rossel, J., Somorovsky, J., Acar, Y., Fahr, R., Arias Cabarcos, P., Bodden, E., & Gräßler, I. (2023). Re-Envisioning Industrial Control Systems Security by Considering Human Factors as a Core Element of Defense-in-Depth. 2023 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), 379–385. https://doi.org/10.1109/eurospw59978.2023.00048
LibreCat | DOI | Download (ext.)
 

2022 | Journal Article | LibreCat-ID: 31844
Fischer, A., Fuhry, B., Kußmaul, J., Janneck, J., Kerschbaum, F., & Bodden, E. (2022). Computation on Encrypted Data Using Dataflow Authentication. ACM Transactions on Privacy and Security, 25(3), 1–36. https://doi.org/10.1145/3513005
LibreCat | DOI
 

2022 | Misc | LibreCat-ID: 32409
Schlichtig, M., Wickert, A.-K., Krüger, S., Bodden, E., & Mezini, M. (2022). CamBench -- Cryptographic API Misuse Detection Tool Benchmark Suite. https://doi.org/10.48550/ARXIV.2204.06447
LibreCat | Files available | DOI
 

2022 | Conference Paper | LibreCat-ID: 32410
Nachtigall, M., Schlichtig, M., & Bodden, E. (2022). A Large-Scale Study of Usability Criteria Addressed by Static Analysis Tools. Proceedings of the 31st ACM SIGSOFT International Symposium on Software Testing and Analysis, 532–543. https://doi.org/10.1145/3533767
LibreCat | Files available | DOI
 

2022 | Conference Paper | LibreCat-ID: 31133
Schlichtig, M., Sassalla, S., Narasimhan, K., & Bodden, E. (2022). FUM - A Framework for API Usage constraint and Misuse Classification. 2022 IEEE International Conference on Software Analysis, Evolution and Reengineering (SANER), 673–684. https://doi.org/10.1109/SANER53432.2022.00085
LibreCat | Files available | DOI
 

2022 | Conference Paper | LibreCat-ID: 34057
Pasic, F., & Becker, M. (2022). Domain-specific Language for Condition Monitoring Software Development. 2022 IEEE 27th International Conference on Emerging Technologies and Factory Automation (ETFA). https://doi.org/10.1109/etfa52439.2022.9921730
LibreCat | DOI
 

2022 | Journal Article | LibreCat-ID: 30511 | OA
Schubert, P., Gazzillo, P., Patterson, Z., Braha, J., Schiebel, F., Hermann, B., Wei, S., & Bodden, E. (2022). Static data-flow analysis for software product lines in C. Automated Software Engineering, 29(1), Article 35. https://doi.org/10.1007/s10515-022-00333-1
LibreCat | DOI | Download (ext.)
 

2022 | Journal Article | LibreCat-ID: 33835
Sayar, I., Bartel, A., Bodden, E., & Le Traon, Y. (2022). An In-depth Study of Java Deserialization Remote-Code Execution Exploits and Vulnerabilities. ACM Transactions on Software Engineering and Methodology. https://doi.org/10.1145/3554732
LibreCat | DOI
 

2022 | Journal Article | LibreCat-ID: 33836
Piskachev, G., Späth, J., Budde, I., & Bodden, E. (2022). Fluently specifying taint-flow queries with fluentTQL. Empirical Software Engineering, 27(5), 1–33.
LibreCat
 

2022 | Conference Paper | LibreCat-ID: 33838
Krishnamurthy, R., Piskachev, G., & Bodden, E. (2022). To what extent can we analyze Kotlin programs using existing Java taint analysis tools?
LibreCat
 

2022 | Conference Paper | LibreCat-ID: 33837
Piskachev, G., Dziwok, S., Koch, T., Merschjohann, S., & Bodden, E. (2022). How far are German companies in improving security through static program analysis tools?
LibreCat
 

2022 | Misc | LibreCat-ID: 33959
Wickert, A.-K., Baumgärtner, L., Schlichtig, M., & Mezini, M. (2022). To Fix or Not to Fix: A Critical Study of Crypto-misuses in the Wild. https://doi.org/10.48550/ARXIV.2209.11103
LibreCat | Files available | DOI
 

2021 | Journal Article | LibreCat-ID: 27045 | OA
Luo, L., Pauck, F., Piskachev, G., Benz, M., Pashchenko, I., Mory, M., Bodden, E., Hermann, B., & Massacci, F. (2021). TaintBench: Automatic real-world malware benchmarking of Android taint analyses. Empirical Software Engineering. https://doi.org/10.1007/s10664-021-10013-5
LibreCat | DOI | Download (ext.)
 

2021 | Dissertation | LibreCat-ID: 27158
Luo, L. (2021). Improving Real-World Applicability of Static Taint Analysis. Universität Paderborn.
LibreCat | Files available
 

2021 | Journal Article | LibreCat-ID: 21595
Stockmann, L., Laux, S., & Bodden, E. (2021). Using Architectural Runtime Verification for Offline Data Analysis. Journal of Automotive Software Engineering. https://doi.org/10.2991/jase.d.210205.001
LibreCat | DOI | Download (ext.)
 

2021 | Dissertation | LibreCat-ID: 21596
Fischer, A. (2021). Computing on Encrypted Data using Trusted Execution Environments. Universität Paderborn.
LibreCat | Download (ext.)
 

2021 | Journal Article | LibreCat-ID: 21597
Holzinger, P., & Bodden, E. (2021). A Systematic Hardening of Java’s Information Hiding. International Symposium on Advanced Security on Software and Systems (ASSS).
LibreCat | Download (ext.)
 

2021 | Journal Article | LibreCat-ID: 21599
Bonifacio, R., Krüger, S., Narasimhan, K., Bodden, E., & Mezini, M. (2021). Dealing with Variability in API Misuse Specification. European Conference on Object-Oriented Programming (ECOOP).
LibreCat
 

2021 | Conference Paper | LibreCat-ID: 22462
Shivarpatna Venkatesh, A. P., & Bodden, E. (2021). Automated Cell Header Generator for Jupyter Notebooks. International Workshop on AI and Software Testing/Analysis (AISTA). https://doi.org/10.1145/3464968.3468410
LibreCat | DOI
 

2021 | Conference Paper | LibreCat-ID: 23374
Kummita, S., Piskachev, G., Spath, J., & Bodden, E. (2021). Qualitative and Quantitative Analysis of Callgraph Algorithms for Python. 2021 International Conference on Code Quality (ICCQ). https://doi.org/10.1109/iccq51190.2021.9392986
LibreCat | DOI
 

2021 | Conference Paper | LibreCat-ID: 30084
Karakaya, K., & Bodden, E. (2021). SootFX: A Static Code Feature Extraction Tool for Java and Android. 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM). https://doi.org/10.1109/scam52516.2021.00030
LibreCat | DOI
 

2021 | Conference Paper | LibreCat-ID: 21598 | OA
Schubert, P., Hermann, B., & Bodden, E. (2021). Lossless, Persisted Summarization of Static Callgraph, Points-To and Data-Flow Analysis. European Conference on Object-Oriented Programming (ECOOP).
LibreCat | Download (ext.)
 

2021 | Journal Article | LibreCat-ID: 31132
Dann, A. P., Plate, H., Hermann, B., Ponta, S. E., & Bodden, E. (2021). Identifying Challenges for OSS Vulnerability Scanners - A Study & Test Suite. IEEE Transactions on Software Engineering, 1–1. https://doi.org/10.1109/tse.2021.3101739
LibreCat | DOI
 

2021 | Conference Paper | LibreCat-ID: 26407
Piskachev, G., Krishnamurthy, R., & Bodden, E. (2021). SecuCheck: Engineering configurable taint analysis for software developers. 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM).
LibreCat
 

2021 | Conference Paper | LibreCat-ID: 22463
Luo, L., Schäf, M., Sanchez, D., & Bodden, E. (2021). IDE Support for Cloud-Based Static Analyses. Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering.
LibreCat
 

2021 | Conference Paper | LibreCat-ID: 33840
Karakaya, K., & Bodden, E. (2021). SootFX: A Static Code Feature Extraction Tool for Java and Android. 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 181–186.
LibreCat
 

2021 | Conference Paper | LibreCat-ID: 26406
Schubert, P., Hermann, B., Bodden, E., & Leer, R. (2021). Into the Woods: Experiences from Building a Dataflow Analysis Framework for C/C++. SCAM ’21: IEEE International Working Conference on Source Code Analysis and Manipulation (Engineering Track).
LibreCat
 

2021 | Conference Paper | LibreCat-ID: 26405
Schubert, P., Sattler, F., Schiebel, F., Hermann, B., & Bodden, E. (2021). Modeling the Effects of Global Variables in Data-Flow Analysis for C/C++. 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM).
LibreCat
 

2020 | Journal Article | LibreCat-ID: 20507
Geismann, J., & Bodden, E. (2020). A systematic literature review of model-driven security engineering for cyber–physical systems. Journal of Systems and Software, 169, 110697. https://doi.org/10.1016/j.jss.2020.110697
LibreCat | DOI
 

2020 | Journal Article | LibreCat-ID: 20508
Nguyen Quang Do, L., & Bodden, E. (2020). Explaining Static Analysis with Rule Graphs. IEEE Transactions on Software Engineering.
LibreCat | Download (ext.)
 

2020 | Conference Paper | LibreCat-ID: 20509
Fischer, A., Janneck, J., Kussmaul, J., Krätzschmar, N., Kerschbaum, F., & Bodden, E. (2020). PASAPTO: Policy-aware Security and Performance Trade-off Analysis - Computation on Encrypted Data with Restricted Leakage. 2020 IEEE Computer Security Foundations Symposium (CSF).
LibreCat | Download (ext.)
 

2020 | Conference Paper | LibreCat-ID: 20510
Benz, M., Krogh Kristensen, E., Luo, L., P. Borges Jr., N., Bodden, E., & Zeller, A. (2020). Heaps’n Leaks: How Heap Snapshots Improve Android Taint Analysis. International Conference for Software Engineering (ICSE).
LibreCat
 

2020 | Conference Paper | LibreCat-ID: 20511
Fischer, A., Fuhry, B., Kerschbaum, F., & Bodden, E. (2020). Computation on Encrypted Data using Dataflow Authentication. Privacy Enhancing Technologies Symposium (PETS/PoPETS).
LibreCat | Download (ext.)
 

2020 | Conference Paper | LibreCat-ID: 20512
Krüger, S., Ali, K., & Bodden, E. (2020). CogniCrypt_GEN - Generating Code for the Secure Usage of Crypto APIs. International Symposium on Code Generation and Optimization (CGO), 185–198.
LibreCat | Files available
 

2020 | Dissertation | LibreCat-ID: 20513
Krüger, S. (2020). CogniCrypt -- The Secure Integration of Cryptographic Software. Universitaetsbibliothek Paderborn.
LibreCat | Download (ext.)
 

2020 | Conference Paper | LibreCat-ID: 20518
Koch, T., Dziwok, S., Holtmann, J., & Bodden, E. (2020). Scenario-based Specification of Security Protocols and Transformation to Security Model Checkers. ACM/IEEE 23rd International Conference on Model Driven Engineering Languages and Systems (MODELS ’20). https://doi.org/10.1145/3365438.3410946
LibreCat | DOI
 

Filters and Search Terms

department=76

Search

Filter Publications

Display / Sort

Citation Style: APA

Export / Embed