Please note that LibreCat no longer supports Internet Explorer versions 8 or 9 (or earlier).
We recommend upgrading to the latest Internet Explorer, Google Chrome, or Firefox.
205 Publications
- 1 (current)
- 2
- 3
- 4
- 5
2023 | Journal Article | LibreCat-ID: 48946
I. Gräßler, E. Bodden, D. Wiechel, and J. Pottebaum, “Defense-in-Depth als neues Paradigma der sicherheitsgerechten Produktentwicklung: interdisziplinäre, bedrohungsbewusste und lösungsorientierte Security,” Konstruktion, vol. 75, no. 11–12, pp. 60–65, 2023, doi: 10.37544/0720-5953-2023-11-12-60.
LibreCat
| DOI
2023 | Conference Paper | LibreCat-ID: 44146
M. Khedkar, “Static Analysis for Android GDPR Compliance Assurance,” doi: 10.1109/ICSE-Companion58688.2023.00054.
LibreCat
| Files available
| DOI
| arXiv
2023 | Book Chapter | LibreCat-ID: 52662
M. Nachtigall, M. Schlichtig, and E. Bodden, “Evaluation of Usability Criteria Addressed by Static Analysis Tools on a Large Scale,” in Software Engineering 2023, Bonn: Gesellschaft für Informatik e.V., 2023, pp. 95–96.
LibreCat
| Download (ext.)
2023 | Book Chapter | LibreCat-ID: 52660
M. Schlichtig, S. Sassalla, K. Narasimhan, and E. Bodden, “Introducing FUM: A Framework for API Usage Constraint and Misuse Classification,” in Software Engineering 2023, Bonn: Gesellschaft für Informatik e.V., 2023, pp. 105–106.
LibreCat
| Download (ext.)
2023 | Conference Paper | LibreCat-ID: 46500
J. Pottebaum et al., “Re-Envisioning Industrial Control Systems Security by Considering Human Factors as a Core Element of Defense-in-Depth,” in 2023 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), Delft, Netherlands, 2023, pp. 379–385, doi: 10.1109/eurospw59978.2023.00048.
LibreCat
| DOI
| Download (ext.)
2022 | Journal Article | LibreCat-ID: 31844
A. Fischer, B. Fuhry, J. Kußmaul, J. Janneck, F. Kerschbaum, and E. Bodden, “Computation on Encrypted Data Using Dataflow Authentication,” ACM Transactions on Privacy and Security, vol. 25, no. 3, pp. 1–36, 2022, doi: 10.1145/3513005.
LibreCat
| DOI
2022 | Misc | LibreCat-ID: 32409
M. Schlichtig, A.-K. Wickert, S. Krüger, E. Bodden, and M. Mezini, CamBench -- Cryptographic API Misuse Detection Tool Benchmark Suite. 2022.
LibreCat
| Files available
| DOI
2022 | Conference Paper | LibreCat-ID: 32410
M. Nachtigall, M. Schlichtig, and E. Bodden, “A Large-Scale Study of Usability Criteria Addressed by Static Analysis Tools,” in Proceedings of the 31st ACM SIGSOFT International Symposium on Software Testing and Analysis, 2022, pp. 532–543, doi: 10.1145/3533767.
LibreCat
| Files available
| DOI
2022 | Conference Paper | LibreCat-ID: 31133
M. Schlichtig, S. Sassalla, K. Narasimhan, and E. Bodden, “FUM - A Framework for API Usage constraint and Misuse Classification,” in 2022 IEEE International Conference on Software Analysis, Evolution and Reengineering (SANER), 2022, pp. 673–684, doi: https://doi.org/10.1109/SANER53432.2022.00085.
LibreCat
| Files available
| DOI
2022 | Conference Paper | LibreCat-ID: 34057
F. Pasic and M. Becker, “Domain-specific Language for Condition Monitoring Software Development,” 2022, doi: 10.1109/etfa52439.2022.9921730.
LibreCat
| DOI
2022 | Journal Article | LibreCat-ID: 30511 | 
P. Schubert et al., “Static data-flow analysis for software product lines in C,” Automated Software Engineering, vol. 29, no. 1, Art. no. 35, 2022, doi: 10.1007/s10515-022-00333-1.
LibreCat
| DOI
| Download (ext.)
2022 | Journal Article | LibreCat-ID: 33835
I. Sayar, A. Bartel, E. Bodden, and Y. Le Traon, “An In-depth Study of Java Deserialization Remote-Code Execution Exploits and Vulnerabilities,” ACM Transactions on Software Engineering and Methodology, 2022, doi: 10.1145/3554732.
LibreCat
| DOI
2022 | Journal Article | LibreCat-ID: 33836
G. Piskachev, J. Späth, I. Budde, and E. Bodden, “Fluently specifying taint-flow queries with fluentTQL,” Empirical Software Engineering, vol. 27, no. 5, pp. 1–33, 2022.
LibreCat
2022 | Conference Paper | LibreCat-ID: 33838
R. Krishnamurthy, G. Piskachev, and E. Bodden, “To what extent can we analyze Kotlin programs using existing Java taint analysis tools?” 2022.
LibreCat
2022 | Conference Paper | LibreCat-ID: 33837
G. Piskachev, S. Dziwok, T. Koch, S. Merschjohann, and E. Bodden, “How far are German companies in improving security through static program analysis tools?” 2022.
LibreCat
2022 | Misc | LibreCat-ID: 33959
A.-K. Wickert, L. Baumgärtner, M. Schlichtig, and M. Mezini, To Fix or Not to Fix: A Critical Study of Crypto-misuses in the Wild. 2022.
LibreCat
| Files available
| DOI
2021 | Journal Article | LibreCat-ID: 27045 |
L. Luo et al., “TaintBench: Automatic real-world malware benchmarking of Android taint analyses,” Empirical Software Engineering, 2021, doi: 10.1007/s10664-021-10013-5.
LibreCat
| DOI
| Download (ext.)
2021 | Dissertation | LibreCat-ID: 27158
L. Luo, Improving Real-World Applicability of Static Taint Analysis. Universität Paderborn, 2021.
LibreCat
| Files available
2021 | Journal Article | LibreCat-ID: 21595
L. Stockmann, S. Laux, and E. Bodden, “Using Architectural Runtime Verification for Offline Data Analysis,” Journal of Automotive Software Engineering, 2021, doi: 10.2991/jase.d.210205.001.
LibreCat
| DOI
| Download (ext.)
2021 | Dissertation | LibreCat-ID: 21596
A. Fischer, Computing on Encrypted Data using Trusted Execution Environments. Universität Paderborn, 2021.
LibreCat
| Download (ext.)
2021 | Journal Article | LibreCat-ID: 21597
P. Holzinger and E. Bodden, “A Systematic Hardening of Java’s Information Hiding,” International Symposium on Advanced Security on Software and Systems (ASSS), 2021.
LibreCat
| Download (ext.)
2021 | Journal Article | LibreCat-ID: 21599
R. Bonifacio, S. Krüger, K. Narasimhan, E. Bodden, and M. Mezini, “Dealing with Variability in API Misuse Specification,” European Conference on Object-Oriented Programming (ECOOP), 2021.
LibreCat
2021 | Conference Paper | LibreCat-ID: 22462
A. P. Shivarpatna Venkatesh and E. Bodden, “Automated Cell Header Generator for Jupyter Notebooks,” 2021, doi: 10.1145/3464968.3468410.
LibreCat
| DOI
2021 | Conference Paper | LibreCat-ID: 23374
S. Kummita, G. Piskachev, J. Spath, and E. Bodden, “Qualitative and Quantitative Analysis of Callgraph Algorithms for Python,” 2021, doi: 10.1109/iccq51190.2021.9392986.
LibreCat
| DOI
2021 | Conference Paper | LibreCat-ID: 30084
K. Karakaya and E. Bodden, “SootFX: A Static Code Feature Extraction Tool for Java and Android,” 2021, doi: 10.1109/scam52516.2021.00030.
LibreCat
| DOI
2021 | Conference Paper | LibreCat-ID: 21598 |
P. Schubert, B. Hermann, and E. Bodden, “Lossless, Persisted Summarization of Static Callgraph, Points-To and Data-Flow Analysis,” 2021.
LibreCat
| Download (ext.)
2021 | Journal Article | LibreCat-ID: 31132
A. P. Dann, H. Plate, B. Hermann, S. E. Ponta, and E. Bodden, “Identifying Challenges for OSS Vulnerability Scanners - A Study & Test Suite,” IEEE Transactions on Software Engineering, pp. 1–1, 2021, doi: 10.1109/tse.2021.3101739.
LibreCat
| DOI
2021 | Conference Paper | LibreCat-ID: 26407
G. Piskachev, R. Krishnamurthy, and E. Bodden, “SecuCheck: Engineering configurable taint analysis for software developers,” 2021.
LibreCat
2021 | Conference Paper | LibreCat-ID: 22463
L. Luo, M. Schäf, D. Sanchez, and E. Bodden, “IDE Support for Cloud-Based Static Analyses,” 2021.
LibreCat
2021 | Conference Paper | LibreCat-ID: 33840
K. Karakaya and E. Bodden, “SootFX: A Static Code Feature Extraction Tool for Java and Android,” in 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 2021, pp. 181–186.
LibreCat
2021 | Conference Paper | LibreCat-ID: 26406
P. Schubert, B. Hermann, E. Bodden, and R. Leer, “Into the Woods: Experiences from Building a Dataflow Analysis Framework for C/C++,” 2021.
LibreCat
2021 | Conference Paper | LibreCat-ID: 26405
P. Schubert, F. Sattler, F. Schiebel, B. Hermann, and E. Bodden, “Modeling the Effects of Global Variables in Data-Flow Analysis for C/C++,” 2021.
LibreCat
2020 | Journal Article | LibreCat-ID: 20507
J. Geismann and E. Bodden, “A systematic literature review of model-driven security engineering for cyber–physical systems,” Journal of Systems and Software, vol. 169, p. 110697, 2020, doi: https://doi.org/10.1016/j.jss.2020.110697.
LibreCat
| DOI
2020 | Journal Article | LibreCat-ID: 20508
L. Nguyen Quang Do and E. Bodden, “Explaining Static Analysis with Rule Graphs,” IEEE Transactions on Software Engineering, 2020.
LibreCat
| Download (ext.)
2020 | Conference Paper | LibreCat-ID: 20509
A. Fischer, J. Janneck, J. Kussmaul, N. Krätzschmar, F. Kerschbaum, and E. Bodden, “PASAPTO: Policy-aware Security and Performance Trade-off Analysis - Computation on Encrypted Data with Restricted Leakage,” 2020.
LibreCat
| Download (ext.)
2020 | Conference Paper | LibreCat-ID: 20510
M. Benz, E. Krogh Kristensen, L. Luo, N. P. Borges Jr., E. Bodden, and A. Zeller, “Heaps’n Leaks: How Heap Snapshots Improve Android Taint Analysis,” 2020.
LibreCat
2020 | Conference Paper | LibreCat-ID: 20511
A. Fischer, B. Fuhry, F. Kerschbaum, and E. Bodden, “Computation on Encrypted Data using Dataflow Authentication,” 2020.
LibreCat
| Download (ext.)
2020 | Conference Paper | LibreCat-ID: 20512
S. Krüger, K. Ali, and E. Bodden, “CogniCrypt_GEN - Generating Code for the Secure Usage of Crypto APIs,” in International Symposium on Code Generation and Optimization (CGO), 2020, pp. 185–198.
LibreCat
| Files available
2020 | Dissertation | LibreCat-ID: 20513
S. Krüger, CogniCrypt -- The Secure Integration of Cryptographic Software. Universitaetsbibliothek Paderborn, 2020.
LibreCat
| Download (ext.)
2020 | Conference Paper | LibreCat-ID: 20518
T. Koch, S. Dziwok, J. Holtmann, and E. Bodden, “Scenario-based Specification of Security Protocols and Transformation to Security Model Checkers,” 2020, doi: 10.1145/3365438.3410946.
LibreCat
| DOI
2020 | Report | LibreCat-ID: 20712
P. Schubert, E. Bodden, and B. Hermann, Accelerating Static Call-Graph, Points-to and Data-Flow Analysis Through Persisted Summaries. 2020.
LibreCat
| Files available
2020 | Conference Paper | LibreCat-ID: 23376
G. Piskachev, L. Nguyen Quang Do, O. Johnson, and E. Bodden, “SWAN_ASSIST: Semi-Automated Detection of Code-Specific, Security-Relevant Methods,” 2020, doi: 10.1109/ase.2019.00110.
LibreCat
| DOI
2019 | Dissertation | LibreCat-ID: 20522
P. Holzinger, A Systematic Analysis and Hardening of the Java Security Architecture. Universität Paderborn, 2019.
LibreCat
| Download (ext.)
2019 | Dissertation | LibreCat-ID: 20524
L. Nguyen Quang Do, User-Centered Tool Design for Data-Flow Analysis. Universität Paderborn, 2019.
LibreCat
2019 | Conference Paper | LibreCat-ID: 20525
L. Stockmann, S. Laux, and E. Bodden, “Architectural Runtime Verification,” in 2019 IEEE International Conference on Software Architecture Companion (ICSA-C), 2019, pp. 77–84, doi: 10.1109/ICSA-C.2019.00021.
LibreCat
| DOI
| Download (ext.)
2019 | Conference Paper | LibreCat-ID: 20527
M. Hazhirpasand, M. Ghafari, S. Krüger, E. Bodden, and O. Nierstrasz, “The Impact of Developer Experience in Using Java Cryptography,” in 2019 ACM/IEEE International Symposium on Empirical Software Engineering and Measurement (ESEM), 2019, pp. 1–6, doi: 10.1109/ESEM.2019.8870184.
LibreCat
| DOI
| Download (ext.)
2019 | Conference Paper | LibreCat-ID: 20528
G. Piskachev, T. Petrasch, J. Späth, and E. Bodden, “AuthCheck: Program-state Analysis for Access-control Vulnerabilities,” 2019.
LibreCat
| Download (ext.)
- 1 (current)
- 2
- 3
- 4
- 5