| [215] | “Free” as in Freedom to Protest? (Fabio Massacci, Antonino Sabetta, Jelena Mirkovic, Toby Murray, Hamed Okhravi, Mohammad Mannan, Anderson Rocha, Eric Bodden, Daniel E. Geer), In IEEE Security & Privacy, pages 16-21, 20(5), 2022. [bib] [doi] |
| [214] | TaintBench: Automatic real-world malware benchmarking of Android taint analyses (Linghui Luo, Felix Pauck, Goran Piskachev, Manuel Benz, Ivan Pashchenko, Martin Mory, Eric Bodden, Ben Hermann, Fabio Massacci), In Empirical Software Engineering, pages 1--41, 27(1), 2022. [bib] [pdf] [doi] |
| [213] | Integrating Security Protocols in Scenario-based Requirements Specifications (Thorsten Koch, Sascha Trippel, Stefan Dziwok, Eric Bodden), pages 15-25, SciTePress, 2022. [bib] [pdf] [doi] |
| [212] | To what extent can we analyze Kotlin programs using existing Java taint analysis tools? (Ranjith Krishnamurthy, Goran Piskachev, Eric Bodden), In , IEEE International Working Conference on Source Code Analysis and Manipulation (SCAM), , 2022. Awarded: Best Paper Award (Engineering Track) [bib] [pdf] |
| [211] | Computation on Encrypted Data Using Dataflow Authentication (Andreas Fischer, Benny Fuhry, Jörn Kußmaul, Jonas Janneck, Florian Kerschbaum, Eric Bodden), In ACM Trans. Priv. Secur., 25(3), 2022. [bib] [pdf] [doi] |
| [210] | Apparatuses, Mobile Devices, Methods and Computer Programs for Evaluating Runtime Information of an Extracted Set of Instructions based on at least a part of a Computer Program (Siegfried Rasthofer, Marc Miltenberger, Eric Bodden), European patent EP3029595A3 (granted), 2022. [bib] [pdf] |
| [209] | Automated Cell Header Generator for Jupyter Notebooks (Ashwin Prasad Shivarpatna Venkatesh, Eric Bodden), In International Workshop on AI and Software Testing/Analysis (AISTA), 2021. (To appear.) [bib] [pdf] |
| [208] | Modeling the Effects of Global Variables in Data-Flow Analysis for C/C++ (Philipp Dominik Schubert, Florian Sattler, Fabian Schiebel, Ben Hermann, Eric Bodden), In 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), pages 12--17, 2021. [bib] [pdf] |
| [207] | Lossless, Persisted Summarization of Static Callgraph, Points-To and Data-Flow Analysis (Philipp Schubert, Ben Hermann, Eric Bodden), In European Conference on Object-Oriented Programming (ECOOP), 2021. Awarded: Distinguished Paper Award [bib] [pdf] |
| [206] | Into the Woods: Experiences from Building a Dataflow Analysis Framework for C/C++ (Philipp Dominik Schubert, Ben Hermann, Eric Bodden, Richard Leer), In SCAM '21: IEEE International Working Conference on Source Code Analysis and Manipulation (Engineering Track), 2021. [bib] [pdf] |
| [205] | SecuCheck: Engineering configurable taint analysis for software developers (Goran Piskachev, Ranjith Krishnamurthy, Eric Bodden), In 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), pages 24--29, 2021. [bib] [pdf] |
| [204] | Improving Real-World Applicability of Static Taint Analysis (Linghui Luo), PhD thesis, Universität Paderborn, 2021. Awarded: Summa cum laude, Ernst Denert Software Engineering Award, UPB Doctoral Dissertation Award [bib] [pdf] |
| [203] | Computing on Encrypted Data using Trusted Execution Environments (Andreas Fischer), PhD thesis, Universität Paderborn, 2021. [bib] [pdf] |
| [202] | IDE support for cloud-based static analyses (Linghui Luo, Martin Schäf, Daniel Sanchez, Eric Bodden), In Proceedings of the 29th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, pages 1178--1189, 2021. [bib] [pdf] |
| [201] | Qualitative and Quantitative Analysis of Callgraph Algorithms for Python (Sriteja Kummita, Goran Piskachev, Johannes Späth, Eric Bodden), In 2021 International Conference on Code Quality (ICCQ), pages 1-15, 2021. [bib] [pdf] [doi] |
| [200] | SootFX: A Static Code Feature Extraction Tool for Java and Android (Kadiray Karakaya, Eric Bodden), In 2021 IEEE 21st International Working Conference on Source Code Analysis and Manipulation (SCAM), pages 181--186, 2021. [bib] [pdf] |
| [199] | A Systematic Hardening of Java's Information Hiding (Philipp Holzinger, Eric Bodden), In International Symposium on Advanced Security on Software and Systems (ASSS), 2021. [bib] [pdf] |
| [198] | Identifying Challenges for OSS Vulnerability Scanners - A Study & Test Suite (Andreas Dann, Henrik Plate, Ben Hermann, Serena Elisa Ponta, Eric Bodden), In IEEE Transactions on Software Engineering, pages 1-1, (), 2021. [bib] [pdf] [doi] |
| [197] | Dealing with Variability in API Misuse Specification (Rodrigo Bonifacio, Stefan Krüger, Krishna Narasimhan, Eric Bodden, Mira Mezini), In European Conference on Object-Oriented Programming (ECOOP), 2021. [bib] [pdf] |
| [196] | Using Architectural Runtime Verification for Offline Data Analysis (Lars Stockmann, Sven Laux, Eric Bodden), In Journal of Automotive Software Engineering, 2021. [bib] [pdf] [doi] |
| [195] | Explaining Static Analysis with Rule Graphs (Lisa Nguyen Quang Do, Eric Bodden), In IEEE Transactions on Software Engineering, 2020. (To appear.) [bib] [pdf] |
| [194] | CogniCrypt -- The Secure Integration of Cryptographic Software (Stefan Krüger), PhD thesis, Universität Paderborn, 2020. Awarded: Summa cum laude [bib] [pdf] |
| [193] | Model-Driven Information Flow Security Engineering for Cyber-Physical Systems (Christopher Gerking), PhD thesis, Universität Paderborn, 2020. [bib] [pdf] |
| [192] | CogniCrypt$_GEN$ - Generating Code for the Secure Usage of Crypto APIs (Stefan Krüger, Karim Ali, Eric Bodden), In International Symposium on Code Generation and Optimization (CGO), pages 185--198, 2020. [bib] [pdf] |
| [191] | Scenario-based specification of security protocols and transformation to security model checkers (Thorsten Koch, Stefan Dziwok, Jörg Holtmann, Eric Bodden), In MoDELS '20: ACM/IEEE 23rd International Conference on Model Driven Engineering Languages and Systems, Virtual Event, Canada, 18-23 October, 2020 (Eugene Syriani, Houari A. Sahraoui, Juan de Lara, Silvia Abrahão, eds.), pages 343--353, ACM, 2020. [bib] [pdf] [doi] |