Please note that LibreCat no longer supports Internet Explorer versions 8 or 9 (or earlier).

We recommend upgrading to the latest Internet Explorer, Google Chrome, or Firefox.

210 Publications


2022 | Misc | LibreCat-ID: 32409
Schlichtig, M., Wickert, A.-K., Krüger, S., Bodden, E., & Mezini, M. (2022). CamBench -- Cryptographic API Misuse Detection Tool Benchmark Suite. https://doi.org/10.48550/ARXIV.2204.06447
LibreCat | Files available | DOI
 

2022 | Conference Paper | LibreCat-ID: 32410
Nachtigall, M., Schlichtig, M., & Bodden, E. (2022). A Large-Scale Study of Usability Criteria Addressed by Static Analysis Tools. Proceedings of the 31st ACM SIGSOFT International Symposium on Software Testing and Analysis, 532–543. https://doi.org/10.1145/3533767
LibreCat | Files available | DOI
 

2022 | Conference Paper | LibreCat-ID: 31133
Schlichtig, M., Sassalla, S., Narasimhan, K., & Bodden, E. (2022). FUM - A Framework for API Usage constraint and Misuse Classification. 2022 IEEE International Conference on Software Analysis, Evolution and Reengineering (SANER), 673–684. https://doi.org/10.1109/SANER53432.2022.00085
LibreCat | Files available | DOI
 

2022 | Conference Paper | LibreCat-ID: 34057
Pasic, F., & Becker, M. (2022). Domain-specific Language for Condition Monitoring Software Development. 2022 IEEE 27th International Conference on Emerging Technologies and Factory Automation (ETFA). https://doi.org/10.1109/etfa52439.2022.9921730
LibreCat | DOI
 

2022 | Journal Article | LibreCat-ID: 30511 | OA
Schubert, P., Gazzillo, P., Patterson, Z., Braha, J., Schiebel, F., Hermann, B., Wei, S., & Bodden, E. (2022). Static data-flow analysis for software product lines in C. Automated Software Engineering, 29(1), Article 35. https://doi.org/10.1007/s10515-022-00333-1
LibreCat | DOI | Download (ext.)
 

2022 | Journal Article | LibreCat-ID: 33835
Sayar, I., Bartel, A., Bodden, E., & Le Traon, Y. (2022). An In-depth Study of Java Deserialization Remote-Code Execution Exploits and Vulnerabilities. ACM Transactions on Software Engineering and Methodology. https://doi.org/10.1145/3554732
LibreCat | DOI
 

2022 | Journal Article | LibreCat-ID: 33836
Piskachev, G., Späth, J., Budde, I., & Bodden, E. (2022). Fluently specifying taint-flow queries with fluentTQL. Empirical Software Engineering, 27(5), 1–33.
LibreCat
 

2022 | Conference Paper | LibreCat-ID: 33838
Krishnamurthy, R., Piskachev, G., & Bodden, E. (2022). To what extent can we analyze Kotlin programs using existing Java taint analysis tools?
LibreCat
 

2022 | Conference Paper | LibreCat-ID: 33837
Piskachev, G., Dziwok, S., Koch, T., Merschjohann, S., & Bodden, E. (2022). How far are German companies in improving security through static program analysis tools?
LibreCat
 

2022 | Misc | LibreCat-ID: 33959
Wickert, A.-K., Baumgärtner, L., Schlichtig, M., & Mezini, M. (2022). To Fix or Not to Fix: A Critical Study of Crypto-misuses in the Wild. https://doi.org/10.48550/ARXIV.2209.11103
LibreCat | Files available | DOI
 

2022 | Journal Article | LibreCat-ID: 53952
Massacci, F., Sabetta, A., Mirkovic, J., Murray, T., Okhravi, H., Mannan, M., Rocha, A., Bodden, E., & Geer, D. E. (2022). “Free” as in Freedom to Protest? IEEE Security & Privacy, 20(5), 16–21. https://doi.org/10.1109/msec.2022.3185845
LibreCat | DOI
 

2021 | Journal Article | LibreCat-ID: 27045 | OA
Luo, L., Pauck, F., Piskachev, G., Benz, M., Pashchenko, I., Mory, M., Bodden, E., Hermann, B., & Massacci, F. (2021). TaintBench: Automatic real-world malware benchmarking of Android taint analyses. Empirical Software Engineering. https://doi.org/10.1007/s10664-021-10013-5
LibreCat | DOI | Download (ext.)
 

2021 | Dissertation | LibreCat-ID: 27158
Luo, L. (2021). Improving Real-World Applicability of Static Taint Analysis. Universität Paderborn.
LibreCat | Files available
 

2021 | Journal Article | LibreCat-ID: 21595
Stockmann, L., Laux, S., & Bodden, E. (2021). Using Architectural Runtime Verification for Offline Data Analysis. Journal of Automotive Software Engineering. https://doi.org/10.2991/jase.d.210205.001
LibreCat | DOI | Download (ext.)
 

2021 | Dissertation | LibreCat-ID: 21596
Fischer, A. (2021). Computing on Encrypted Data using Trusted Execution Environments. Universität Paderborn.
LibreCat | Download (ext.)
 

2021 | Journal Article | LibreCat-ID: 21597
Holzinger, P., & Bodden, E. (2021). A Systematic Hardening of Java’s Information Hiding. International Symposium on Advanced Security on Software and Systems (ASSS).
LibreCat | Download (ext.)
 

2021 | Journal Article | LibreCat-ID: 21599
Bonifacio, R., Krüger, S., Narasimhan, K., Bodden, E., & Mezini, M. (2021). Dealing with Variability in API Misuse Specification. European Conference on Object-Oriented Programming (ECOOP).
LibreCat
 

2021 | Conference Paper | LibreCat-ID: 22462
Shivarpatna Venkatesh, A. P., & Bodden, E. (2021). Automated Cell Header Generator for Jupyter Notebooks. International Workshop on AI and Software Testing/Analysis (AISTA). https://doi.org/10.1145/3464968.3468410
LibreCat | DOI
 

2021 | Conference Paper | LibreCat-ID: 23374
Kummita, S., Piskachev, G., Spath, J., & Bodden, E. (2021). Qualitative and Quantitative Analysis of Callgraph Algorithms for Python. 2021 International Conference on Code Quality (ICCQ). https://doi.org/10.1109/iccq51190.2021.9392986
LibreCat | DOI
 

2021 | Conference Paper | LibreCat-ID: 30084
Karakaya, K., & Bodden, E. (2021). SootFX: A Static Code Feature Extraction Tool for Java and Android. 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM). https://doi.org/10.1109/scam52516.2021.00030
LibreCat | DOI
 

2021 | Conference Paper | LibreCat-ID: 21598 | OA
Schubert, P., Hermann, B., & Bodden, E. (2021). Lossless, Persisted Summarization of Static Callgraph, Points-To and Data-Flow Analysis. European Conference on Object-Oriented Programming (ECOOP).
LibreCat | Download (ext.)
 

2021 | Journal Article | LibreCat-ID: 31132
Dann, A. P., Plate, H., Hermann, B., Ponta, S. E., & Bodden, E. (2021). Identifying Challenges for OSS Vulnerability Scanners - A Study & Test Suite. IEEE Transactions on Software Engineering, 1–1. https://doi.org/10.1109/tse.2021.3101739
LibreCat | DOI
 

2021 | Conference Paper | LibreCat-ID: 26407
Piskachev, G., Krishnamurthy, R., & Bodden, E. (2021). SecuCheck: Engineering configurable taint analysis for software developers. 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM).
LibreCat
 

2021 | Conference Paper | LibreCat-ID: 22463
Luo, L., Schäf, M., Sanchez, D., & Bodden, E. (2021). IDE Support for Cloud-Based Static Analyses. Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering.
LibreCat
 

2021 | Conference Paper | LibreCat-ID: 33840
Karakaya, K., & Bodden, E. (2021). SootFX: A Static Code Feature Extraction Tool for Java and Android. 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), 181–186.
LibreCat
 

2021 | Conference Paper | LibreCat-ID: 26406
Schubert, P., Hermann, B., Bodden, E., & Leer, R. (2021). Into the Woods: Experiences from Building a Dataflow Analysis Framework for C/C++. SCAM ’21: IEEE International Working Conference on Source Code Analysis and Manipulation (Engineering Track).
LibreCat
 

2021 | Conference Paper | LibreCat-ID: 26405
Schubert, P., Sattler, F., Schiebel, F., Hermann, B., & Bodden, E. (2021). Modeling the Effects of Global Variables in Data-Flow Analysis for C/C++. 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM).
LibreCat
 

2020 | Journal Article | LibreCat-ID: 20507
Geismann, J., & Bodden, E. (2020). A systematic literature review of model-driven security engineering for cyber–physical systems. Journal of Systems and Software, 169, 110697. https://doi.org/10.1016/j.jss.2020.110697
LibreCat | DOI
 

2020 | Journal Article | LibreCat-ID: 20508
Nguyen Quang Do, L., & Bodden, E. (2020). Explaining Static Analysis with Rule Graphs. IEEE Transactions on Software Engineering.
LibreCat | Download (ext.)
 

2020 | Conference Paper | LibreCat-ID: 20509
Fischer, A., Janneck, J., Kussmaul, J., Krätzschmar, N., Kerschbaum, F., & Bodden, E. (2020). PASAPTO: Policy-aware Security and Performance Trade-off Analysis - Computation on Encrypted Data with Restricted Leakage. 2020 IEEE Computer Security Foundations Symposium (CSF).
LibreCat | Download (ext.)
 

2020 | Conference Paper | LibreCat-ID: 20510
Benz, M., Krogh Kristensen, E., Luo, L., P. Borges Jr., N., Bodden, E., & Zeller, A. (2020). Heaps’n Leaks: How Heap Snapshots Improve Android Taint Analysis. International Conference for Software Engineering (ICSE).
LibreCat
 

2020 | Conference Paper | LibreCat-ID: 20511
Fischer, A., Fuhry, B., Kerschbaum, F., & Bodden, E. (2020). Computation on Encrypted Data using Dataflow Authentication. Privacy Enhancing Technologies Symposium (PETS/PoPETS).
LibreCat | Download (ext.)
 

2020 | Conference Paper | LibreCat-ID: 20512
Krüger, S., Ali, K., & Bodden, E. (2020). CogniCrypt_GEN - Generating Code for the Secure Usage of Crypto APIs. International Symposium on Code Generation and Optimization (CGO), 185–198.
LibreCat | Files available
 

2020 | Dissertation | LibreCat-ID: 20513
Krüger, S. (2020). CogniCrypt -- The Secure Integration of Cryptographic Software. Universitaetsbibliothek Paderborn.
LibreCat | Download (ext.)
 

2020 | Conference Paper | LibreCat-ID: 20518
Koch, T., Dziwok, S., Holtmann, J., & Bodden, E. (2020). Scenario-based Specification of Security Protocols and Transformation to Security Model Checkers. ACM/IEEE 23rd International Conference on Model Driven Engineering Languages and Systems (MODELS ’20). https://doi.org/10.1145/3365438.3410946
LibreCat | DOI
 

2020 | Dissertation | LibreCat-ID: 20521
Gerking, C. (2020). Model-Driven Information Flow Security Engineering for Cyber-Physical Systems. Paderborn University. https://doi.org/10.17619/UNIPB/1-1033
LibreCat | DOI
 

2020 | Report | LibreCat-ID: 20712
Schubert, P., Bodden, E., & Hermann, B. (2020). Accelerating Static Call-Graph, Points-to and Data-Flow Analysis Through Persisted Summaries.
LibreCat | Files available
 

2020 | Book Chapter | LibreCat-ID: 20891
Knüppel, A., Krüger, S., Thüm, T., Bubel, R., Krieter, S., Bodden, E., & Schaefer, I. (2020). Using Abstract Contracts for Verifying Evolving Features and Their Interactions. In Lecture Notes in Computer Science. https://doi.org/10.1007/978-3-030-64354-6_5
LibreCat | DOI
 

2020 | Conference Paper | LibreCat-ID: 23376
Piskachev, G., Nguyen Quang Do, L., Johnson, O., & Bodden, E. (2020). SWAN_ASSIST: Semi-Automated Detection of Code-Specific, Security-Relevant Methods. 2019 34th IEEE/ACM International Conference on Automated Software Engineering (ASE). https://doi.org/10.1109/ase.2019.00110
LibreCat | DOI
 

2020 | Book Chapter | LibreCat-ID: 23377
Piskachev, G., Petrasch, T., Späth, J., & Bodden, E. (2020). AuthCheck: Program-State Analysis for Access-Control Vulnerabilities. In Lecture Notes in Computer Science. https://doi.org/10.1007/978-3-030-54997-8_34
LibreCat | DOI
 

2019 | Dissertation | LibreCat-ID: 20522
Holzinger, P. (2019). A Systematic Analysis and Hardening of the Java Security Architecture. Universität Paderborn.
LibreCat | Download (ext.)
 

2019 | Dissertation | LibreCat-ID: 20524
Nguyen Quang Do, L. (2019). User-Centered Tool Design for Data-Flow Analysis. Universität Paderborn.
LibreCat
 

2019 | Conference Paper | LibreCat-ID: 20525
Stockmann, L., Laux, S., & Bodden, E. (2019). Architectural Runtime Verification. 2019 IEEE International Conference on Software Architecture Companion (ICSA-C), 77–84. https://doi.org/10.1109/ICSA-C.2019.00021
LibreCat | DOI | Download (ext.)
 

2019 | Conference Paper | LibreCat-ID: 20527
Hazhirpasand, M., Ghafari, M., Krüger, S., Bodden, E., & Nierstrasz, O. (2019). The Impact of Developer Experience in Using Java Cryptography. 2019 ACM/IEEE International Symposium on Empirical Software Engineering and Measurement (ESEM), 1–6. https://doi.org/10.1109/ESEM.2019.8870184
LibreCat | DOI | Download (ext.)
 

2019 | Conference Paper | LibreCat-ID: 20528
Piskachev, G., Petrasch, T., Späth, J., & Bodden, E. (2019). AuthCheck: Program-state Analysis for Access-control Vulnerabilities. 10th Workshop on Tools for Automatic Program Analysis (TAPAS).
LibreCat | Download (ext.)
 

2019 | Conference Paper | LibreCat-ID: 20529
Nachtigall, M., Nguyen Quang Do, L., & Bodden, E. (2019). Explaining Static Analysis -- A Perspective. 1st International Workshop on Explainable Software (EXPLAIN) at ASE.
LibreCat | Download (ext.)
 

2019 | Conference Paper | LibreCat-ID: 20531
Luo, L., Bodden, E., & Späth, J. (2019). A Qualitative Analysis of Android Taint-Analysis Results. IEEE/ACM International Conference on Automated Software Engineering (ASE 2019).
LibreCat | Download (ext.)
 

2019 | Conference Paper | LibreCat-ID: 20532
Piskachev, G., Nguyen Quang Do, L., Johnson, O., & Bodden, E. (2019). SWAN_ASSIST: Semi-Automated Detection of Code-Specific, Security-Relevant Methods. IEEE/ACM International Conference on Automated Software Engineering (ASE 2019), Tool Demo Track.
LibreCat | Download (ext.)
 

2019 | Journal Article | LibreCat-ID: 20533
Krüger, S., Späth, J., Ali, K., Bodden, E., & Mezini, M. (2019). CrySL: An Extensible Approach to Validating the Correct Usage of Cryptographic APIs. IEEE Transactions on Software Engineering, 1–1. https://doi.org/10.1109/TSE.2019.2948910
LibreCat | DOI | Download (ext.)
 

2019 | Conference Paper | LibreCat-ID: 20534
Piskachev, G., Nguyen Quang Do, L., & Bodden, E. (2019). Codebase-Adaptive Detection of Security-Relevant Methods. ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA).
LibreCat | Download (ext.)
 

Filters and Search Terms

department=76

Search

Filter Publications

Display / Sort

Citation Style: APA

Export / Embed