Please note that LibreCat no longer supports Internet Explorer versions 8 or 9 (or earlier).
We recommend upgrading to the latest Internet Explorer, Google Chrome, or Firefox.
205 Publications
- 1 (current)
- 2
- 3
- 4
- 5
2024 | Conference Paper | LibreCat-ID: 52235
Toward an Android Static Analysis Approach for Data Protection
M. Khedkar, E. Bodden, in: Proceedings of the 9th International Conference on Mobile Software Engineering and Systems, 2024.
LibreCat
| Files available
| arXiv
M. Khedkar, E. Bodden, in: Proceedings of the 9th International Conference on Mobile Software Engineering and Systems, 2024.
2024 | Journal Article | LibreCat-ID: 52587
Evaluating Security Through Isolation and Defense in Depth
E. Bodden, J. Pottebaum, M. Fockel, I. Gräßler, IEEE Security & Privacy 22 (2024) 69–72.
LibreCat
| DOI
E. Bodden, J. Pottebaum, M. Fockel, I. Gräßler, IEEE Security & Privacy 22 (2024) 69–72.
2024 | Misc | LibreCat-ID: 52663
Supporting Error Chains in Static Analysis for Precise Evaluation Results and Enhanced Usability
A.-K. Wickert, M. Schlichtig, M. Vogel, L. Winter, M. Mezini, E. Bodden, Supporting Error Chains in Static Analysis for Precise Evaluation Results and Enhanced Usability, 2024.
LibreCat
| Download (ext.)
A.-K. Wickert, M. Schlichtig, M. Vogel, L. Winter, M. Mezini, E. Bodden, Supporting Error Chains in Static Analysis for Precise Evaluation Results and Enhanced Usability, 2024.
2023 | Conference Paper | LibreCat-ID: 35083
UpCy: Safely Updating Outdated Dependencies
A.P. Dann, B. Hermann, E. Bodden, (2023).
LibreCat
A.P. Dann, B. Hermann, E. Bodden, (2023).
2023 | Conference Paper | LibreCat-ID: 41812
Model Generation For Java Frameworks
L. Luo, G. Piskachev, R. Krishnamurthy, J. Dolby, M. Schäf, E. Bodden, in: IEEE International Conference on Software Testing, Verification and Validation (ICST), 2023.
LibreCat
L. Luo, G. Piskachev, R. Krishnamurthy, J. Dolby, M. Schäf, E. Bodden, in: IEEE International Conference on Software Testing, Verification and Validation (ICST), 2023.
2023 | Conference Paper | LibreCat-ID: 41813
Enhancing Comprehension and Navigation in Jupyter Notebooks with Static Analysis
A.P. Shivarpatna Venkatesh, J. Wang, L. Li, E. Bodden, in: IEEE International Conference on Software Analysis, Evolution and Reengineering (SANER), 2023.
LibreCat
A.P. Shivarpatna Venkatesh, J. Wang, L. Li, E. Bodden, in: IEEE International Conference on Software Analysis, Evolution and Reengineering (SANER), 2023.
2023 | Conference Paper | LibreCat-ID: 45312
Two Sparsification Strategies for Accelerating Demand-Driven Pointer Analysis
K. Karakaya, E. Bodden, in: 2023 IEEE Conference on Software Testing, Verification and Validation (ICST), IEEE, 2023.
LibreCat
| DOI
K. Karakaya, E. Bodden, in: 2023 IEEE Conference on Software Testing, Verification and Validation (ICST), IEEE, 2023.
2023 | Journal Article | LibreCat-ID: 46816
Runtime Verification of Crypto APIs: An Empirical Study
A. Torres, P. Costa, L. Amaral, J. Pastro, R. Bonifácio, M. d’Amorim, O. Legunsen, E. Bodden, E. Dias Canedo, IEEE Transactions on Software Engineering 49 (2023) 4510–4525.
LibreCat
| DOI
A. Torres, P. Costa, L. Amaral, J. Pastro, R. Bonifácio, M. d’Amorim, O. Legunsen, E. Bodden, E. Dias Canedo, IEEE Transactions on Software Engineering 49 (2023) 4510–4525.
2023 | Journal Article | LibreCat-ID: 49439
Can the configuration of static analyses make resolving security vulnerabilities more effective? - A user study
G. Piskachev, M. Becker, E. Bodden, Empirical Software Engineering 28 (2023).
LibreCat
| DOI
G. Piskachev, M. Becker, E. Bodden, Empirical Software Engineering 28 (2023).
2023 | Conference Paper | LibreCat-ID: 49438
Securing Your Crypto-API Usage Through Tool Support - A Usability Study
S. Krüger, M. Reif, A.-K. Wickert, S. Nadi, K. Ali, E. Bodden, Y. Acar, M. Mezini, S. Fahl, in: 2023 IEEE Secure Development Conference (SecDev), IEEE, 2023.
LibreCat
| DOI
S. Krüger, M. Reif, A.-K. Wickert, S. Nadi, K. Ali, E. Bodden, Y. Acar, M. Mezini, S. Fahl, in: 2023 IEEE Secure Development Conference (SecDev), IEEE, 2023.
2023 | Journal Article | LibreCat-ID: 48946
Defense-in-Depth als neues Paradigma der sicherheitsgerechten Produktentwicklung: interdisziplinäre, bedrohungsbewusste und lösungsorientierte Security
I. Gräßler, E. Bodden, D. Wiechel, J. Pottebaum, Konstruktion 75 (2023) 60–65.
LibreCat
| DOI
I. Gräßler, E. Bodden, D. Wiechel, J. Pottebaum, Konstruktion 75 (2023) 60–65.
2023 | Conference Paper | LibreCat-ID: 44146
Static Analysis for Android GDPR Compliance Assurance
M. Khedkar, in: Proceedings of the 45th International Conference on Software Engineering: Companion Proceedings (ICSE ‘23), n.d.
LibreCat
| Files available
| DOI
| arXiv
M. Khedkar, in: Proceedings of the 45th International Conference on Software Engineering: Companion Proceedings (ICSE ‘23), n.d.
2023 | Book Chapter | LibreCat-ID: 52662
Evaluation of Usability Criteria Addressed by Static Analysis Tools on a Large Scale
M. Nachtigall, M. Schlichtig, E. Bodden, in: Software Engineering 2023, Gesellschaft für Informatik e.V., Bonn, 2023, pp. 95–96.
LibreCat
| Download (ext.)
M. Nachtigall, M. Schlichtig, E. Bodden, in: Software Engineering 2023, Gesellschaft für Informatik e.V., Bonn, 2023, pp. 95–96.
2023 | Book Chapter | LibreCat-ID: 52660
Introducing FUM: A Framework for API Usage Constraint and Misuse Classification
M. Schlichtig, S. Sassalla, K. Narasimhan, E. Bodden, in: Software Engineering 2023, Gesellschaft für Informatik e.V., Bonn, 2023, pp. 105–106.
LibreCat
| Download (ext.)
M. Schlichtig, S. Sassalla, K. Narasimhan, E. Bodden, in: Software Engineering 2023, Gesellschaft für Informatik e.V., Bonn, 2023, pp. 105–106.
2023 | Conference Paper | LibreCat-ID: 46500
Re-Envisioning Industrial Control Systems Security by Considering Human Factors as a Core Element of Defense-in-Depth
J. Pottebaum, J. Rossel, J. Somorovsky, Y. Acar, R. Fahr, P. Arias Cabarcos, E. Bodden, I. Gräßler, in: 2023 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), IEEE, 2023, pp. 379–385.
LibreCat
| DOI
| Download (ext.)
J. Pottebaum, J. Rossel, J. Somorovsky, Y. Acar, R. Fahr, P. Arias Cabarcos, E. Bodden, I. Gräßler, in: 2023 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), IEEE, 2023, pp. 379–385.
2022 | Journal Article | LibreCat-ID: 31844
Computation on Encrypted Data Using Dataflow Authentication
A. Fischer, B. Fuhry, J. Kußmaul, J. Janneck, F. Kerschbaum, E. Bodden, ACM Transactions on Privacy and Security 25 (2022) 1–36.
LibreCat
| DOI
A. Fischer, B. Fuhry, J. Kußmaul, J. Janneck, F. Kerschbaum, E. Bodden, ACM Transactions on Privacy and Security 25 (2022) 1–36.
2022 | Misc | LibreCat-ID: 32409
CamBench -- Cryptographic API Misuse Detection Tool Benchmark Suite
M. Schlichtig, A.-K. Wickert, S. Krüger, E. Bodden, M. Mezini, CamBench -- Cryptographic API Misuse Detection Tool Benchmark Suite, 2022.
LibreCat
| Files available
| DOI
M. Schlichtig, A.-K. Wickert, S. Krüger, E. Bodden, M. Mezini, CamBench -- Cryptographic API Misuse Detection Tool Benchmark Suite, 2022.
2022 | Conference Paper | LibreCat-ID: 32410
A Large-Scale Study of Usability Criteria Addressed by Static Analysis Tools
M. Nachtigall, M. Schlichtig, E. Bodden, in: Proceedings of the 31st ACM SIGSOFT International Symposium on Software Testing and Analysis, ACM, 2022, pp. 532–543.
LibreCat
| Files available
| DOI
M. Nachtigall, M. Schlichtig, E. Bodden, in: Proceedings of the 31st ACM SIGSOFT International Symposium on Software Testing and Analysis, ACM, 2022, pp. 532–543.
2022 | Conference Paper | LibreCat-ID: 31133
FUM - A Framework for API Usage constraint and Misuse Classification
M. Schlichtig, S. Sassalla, K. Narasimhan, E. Bodden, in: 2022 IEEE International Conference on Software Analysis, Evolution and Reengineering (SANER), 2022, pp. 673–684.
LibreCat
| Files available
| DOI
M. Schlichtig, S. Sassalla, K. Narasimhan, E. Bodden, in: 2022 IEEE International Conference on Software Analysis, Evolution and Reengineering (SANER), 2022, pp. 673–684.
2022 | Conference Paper | LibreCat-ID: 34057
Domain-specific Language for Condition Monitoring Software Development
F. Pasic, M. Becker, in: 2022 IEEE 27th International Conference on Emerging Technologies and Factory Automation (ETFA), IEEE, 2022.
LibreCat
| DOI
F. Pasic, M. Becker, in: 2022 IEEE 27th International Conference on Emerging Technologies and Factory Automation (ETFA), IEEE, 2022.
2022 | Journal Article | LibreCat-ID: 30511 |
Static data-flow analysis for software product lines in C
P. Schubert, P. Gazzillo, Z. Patterson, J. Braha, F. Schiebel, B. Hermann, S. Wei, E. Bodden, Automated Software Engineering 29 (2022).
LibreCat
| DOI
| Download (ext.)
P. Schubert, P. Gazzillo, Z. Patterson, J. Braha, F. Schiebel, B. Hermann, S. Wei, E. Bodden, Automated Software Engineering 29 (2022).
2022 | Journal Article | LibreCat-ID: 33835
An In-depth Study of Java Deserialization Remote-Code Execution Exploits and Vulnerabilities
I. Sayar, A. Bartel, E. Bodden, Y. Le Traon, ACM Transactions on Software Engineering and Methodology (2022).
LibreCat
| DOI
I. Sayar, A. Bartel, E. Bodden, Y. Le Traon, ACM Transactions on Software Engineering and Methodology (2022).
2022 | Journal Article | LibreCat-ID: 33836
Fluently specifying taint-flow queries with fluentTQL
G. Piskachev, J. Späth, I. Budde, E. Bodden, Empirical Software Engineering 27 (2022) 1–33.
LibreCat
G. Piskachev, J. Späth, I. Budde, E. Bodden, Empirical Software Engineering 27 (2022) 1–33.
2022 | Conference Paper | LibreCat-ID: 33838
To what extent can we analyze Kotlin programs using existing Java taint analysis tools?
R. Krishnamurthy, G. Piskachev, E. Bodden, (2022).
LibreCat
R. Krishnamurthy, G. Piskachev, E. Bodden, (2022).
2022 | Conference Paper | LibreCat-ID: 33837
How far are German companies in improving security through static program analysis tools?
G. Piskachev, S. Dziwok, T. Koch, S. Merschjohann, E. Bodden, (2022).
LibreCat
G. Piskachev, S. Dziwok, T. Koch, S. Merschjohann, E. Bodden, (2022).
2022 | Misc | LibreCat-ID: 33959
To Fix or Not to Fix: A Critical Study of Crypto-misuses in the Wild
A.-K. Wickert, L. Baumgärtner, M. Schlichtig, M. Mezini, To Fix or Not to Fix: A Critical Study of Crypto-Misuses in the Wild, 2022.
LibreCat
| Files available
| DOI
A.-K. Wickert, L. Baumgärtner, M. Schlichtig, M. Mezini, To Fix or Not to Fix: A Critical Study of Crypto-Misuses in the Wild, 2022.
2021 | Journal Article | LibreCat-ID: 27045 |
TaintBench: Automatic real-world malware benchmarking of Android taint analyses
L. Luo, F. Pauck, G. Piskachev, M. Benz, I. Pashchenko, M. Mory, E. Bodden, B. Hermann, F. Massacci, Empirical Software Engineering (2021).
LibreCat
| DOI
| Download (ext.)
L. Luo, F. Pauck, G. Piskachev, M. Benz, I. Pashchenko, M. Mory, E. Bodden, B. Hermann, F. Massacci, Empirical Software Engineering (2021).
2021 | Dissertation | LibreCat-ID: 27158
Improving Real-World Applicability of Static Taint Analysis
L. Luo, Improving Real-World Applicability of Static Taint Analysis, Universität Paderborn, 2021.
LibreCat
| Files available
L. Luo, Improving Real-World Applicability of Static Taint Analysis, Universität Paderborn, 2021.
2021 | Journal Article | LibreCat-ID: 21595
Using Architectural Runtime Verification for Offline Data Analysis
L. Stockmann, S. Laux, E. Bodden, Journal of Automotive Software Engineering (2021).
LibreCat
| DOI
| Download (ext.)
L. Stockmann, S. Laux, E. Bodden, Journal of Automotive Software Engineering (2021).
2021 | Dissertation | LibreCat-ID: 21596
Computing on Encrypted Data using Trusted Execution Environments
A. Fischer, Computing on Encrypted Data Using Trusted Execution Environments, Universität Paderborn, 2021.
LibreCat
| Download (ext.)
A. Fischer, Computing on Encrypted Data Using Trusted Execution Environments, Universität Paderborn, 2021.
2021 | Journal Article | LibreCat-ID: 21597
A Systematic Hardening of Java's Information Hiding
P. Holzinger, E. Bodden, International Symposium on Advanced Security on Software and Systems (ASSS) (2021).
LibreCat
| Download (ext.)
P. Holzinger, E. Bodden, International Symposium on Advanced Security on Software and Systems (ASSS) (2021).
2021 | Journal Article | LibreCat-ID: 21599
Dealing with Variability in API Misuse Specification
R. Bonifacio, S. Krüger, K. Narasimhan, E. Bodden, M. Mezini, European Conference on Object-Oriented Programming (ECOOP) (2021).
LibreCat
R. Bonifacio, S. Krüger, K. Narasimhan, E. Bodden, M. Mezini, European Conference on Object-Oriented Programming (ECOOP) (2021).
2021 | Conference Paper | LibreCat-ID: 22462
Automated Cell Header Generator for Jupyter Notebooks
A.P. Shivarpatna Venkatesh, E. Bodden, in: International Workshop on AI and Software Testing/Analysis (AISTA), 2021.
LibreCat
| DOI
A.P. Shivarpatna Venkatesh, E. Bodden, in: International Workshop on AI and Software Testing/Analysis (AISTA), 2021.
2021 | Conference Paper | LibreCat-ID: 23374
Qualitative and Quantitative Analysis of Callgraph Algorithms for Python
S. Kummita, G. Piskachev, J. Spath, E. Bodden, in: 2021 International Conference on Code Quality (ICCQ), 2021.
LibreCat
| DOI
S. Kummita, G. Piskachev, J. Spath, E. Bodden, in: 2021 International Conference on Code Quality (ICCQ), 2021.
2021 | Conference Paper | LibreCat-ID: 30084
SootFX: A Static Code Feature Extraction Tool for Java and Android
K. Karakaya, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), IEEE, 2021.
LibreCat
| DOI
K. Karakaya, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), IEEE, 2021.
2021 | Conference Paper | LibreCat-ID: 21598 |
Lossless, Persisted Summarization of Static Callgraph, Points-To and Data-Flow Analysis
P. Schubert, B. Hermann, E. Bodden, in: European Conference on Object-Oriented Programming (ECOOP), 2021.
LibreCat
| Download (ext.)
P. Schubert, B. Hermann, E. Bodden, in: European Conference on Object-Oriented Programming (ECOOP), 2021.
2021 | Journal Article | LibreCat-ID: 31132
Identifying Challenges for OSS Vulnerability Scanners - A Study & Test Suite
A.P. Dann, H. Plate, B. Hermann, S.E. Ponta, E. Bodden, IEEE Transactions on Software Engineering (2021) 1–1.
LibreCat
| DOI
A.P. Dann, H. Plate, B. Hermann, S.E. Ponta, E. Bodden, IEEE Transactions on Software Engineering (2021) 1–1.
2021 | Conference Paper | LibreCat-ID: 26407
SecuCheck: Engineering configurable taint analysis for software developers
G. Piskachev, R. Krishnamurthy, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021.
LibreCat
G. Piskachev, R. Krishnamurthy, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021.
2021 | Conference Paper | LibreCat-ID: 22463
IDE Support for Cloud-Based Static Analyses
L. Luo, M. Schäf, D. Sanchez, E. Bodden, in: Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, 2021.
LibreCat
L. Luo, M. Schäf, D. Sanchez, E. Bodden, in: Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, 2021.
2021 | Conference Paper | LibreCat-ID: 33840
SootFX: A Static Code Feature Extraction Tool for Java and Android
K. Karakaya, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021, pp. 181–186.
LibreCat
K. Karakaya, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021, pp. 181–186.
2021 | Conference Paper | LibreCat-ID: 26406
Into the Woods: Experiences from Building a Dataflow Analysis Framework for C/C++
P. Schubert, B. Hermann, E. Bodden, R. Leer, in: SCAM ’21: IEEE International Working Conference on Source Code Analysis and Manipulation (Engineering Track), 2021.
LibreCat
P. Schubert, B. Hermann, E. Bodden, R. Leer, in: SCAM ’21: IEEE International Working Conference on Source Code Analysis and Manipulation (Engineering Track), 2021.
2021 | Conference Paper | LibreCat-ID: 26405
Modeling the Effects of Global Variables in Data-Flow Analysis for C/C++
P. Schubert, F. Sattler, F. Schiebel, B. Hermann, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021.
LibreCat
P. Schubert, F. Sattler, F. Schiebel, B. Hermann, E. Bodden, in: 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021.
2020 | Journal Article | LibreCat-ID: 20507
A systematic literature review of model-driven security engineering for cyber–physical systems
J. Geismann, E. Bodden, Journal of Systems and Software 169 (2020) 110697.
LibreCat
| DOI
J. Geismann, E. Bodden, Journal of Systems and Software 169 (2020) 110697.
2020 | Journal Article | LibreCat-ID: 20508
Explaining Static Analysis with Rule Graphs
L. Nguyen Quang Do, E. Bodden, IEEE Transactions on Software Engineering (2020).
LibreCat
| Download (ext.)
L. Nguyen Quang Do, E. Bodden, IEEE Transactions on Software Engineering (2020).
2020 | Conference Paper | LibreCat-ID: 20509
PASAPTO: Policy-aware Security and Performance Trade-off Analysis - Computation on Encrypted Data with Restricted Leakage
A. Fischer, J. Janneck, J. Kussmaul, N. Krätzschmar, F. Kerschbaum, E. Bodden, in: 2020 IEEE Computer Security Foundations Symposium (CSF), 2020.
LibreCat
| Download (ext.)
A. Fischer, J. Janneck, J. Kussmaul, N. Krätzschmar, F. Kerschbaum, E. Bodden, in: 2020 IEEE Computer Security Foundations Symposium (CSF), 2020.
2020 | Conference Paper | LibreCat-ID: 20510
Heaps'n Leaks: How Heap Snapshots Improve Android Taint Analysis
M. Benz, E. Krogh Kristensen, L. Luo, N. P. Borges Jr., E. Bodden, A. Zeller, in: International Conference for Software Engineering (ICSE), 2020.
LibreCat
M. Benz, E. Krogh Kristensen, L. Luo, N. P. Borges Jr., E. Bodden, A. Zeller, in: International Conference for Software Engineering (ICSE), 2020.
2020 | Conference Paper | LibreCat-ID: 20511
Computation on Encrypted Data using Dataflow Authentication
A. Fischer, B. Fuhry, F. Kerschbaum, E. Bodden, in: Privacy Enhancing Technologies Symposium (PETS/PoPETS), 2020.
LibreCat
| Download (ext.)
A. Fischer, B. Fuhry, F. Kerschbaum, E. Bodden, in: Privacy Enhancing Technologies Symposium (PETS/PoPETS), 2020.
2020 | Conference Paper | LibreCat-ID: 20512
CogniCrypt_GEN - Generating Code for the Secure Usage of Crypto APIs
S. Krüger, K. Ali, E. Bodden, in: International Symposium on Code Generation and Optimization (CGO), 2020, pp. 185–198.
LibreCat
| Files available
S. Krüger, K. Ali, E. Bodden, in: International Symposium on Code Generation and Optimization (CGO), 2020, pp. 185–198.
2020 | Dissertation | LibreCat-ID: 20513
CogniCrypt -- The Secure Integration of Cryptographic Software
S. Krüger, CogniCrypt -- The Secure Integration of Cryptographic Software, Universitaetsbibliothek Paderborn, 2020.
LibreCat
| Download (ext.)
S. Krüger, CogniCrypt -- The Secure Integration of Cryptographic Software, Universitaetsbibliothek Paderborn, 2020.
2020 | Conference Paper | LibreCat-ID: 20518
Scenario-based Specification of Security Protocols and Transformation to Security Model Checkers
T. Koch, S. Dziwok, J. Holtmann, E. Bodden, in: ACM/IEEE 23rd International Conference on Model Driven Engineering Languages and Systems (MODELS ’20), ACM, 2020.
LibreCat
| DOI
T. Koch, S. Dziwok, J. Holtmann, E. Bodden, in: ACM/IEEE 23rd International Conference on Model Driven Engineering Languages and Systems (MODELS ’20), ACM, 2020.
- 1 (current)
- 2
- 3
- 4
- 5