Besides a git-based version control system, GitHub integrates several social coding
features. Particularly, GitHub users can star a repository, presumably to manifest interest or …

The C and C++ programming languages are notoriously insecure yet remain indispensable.
Developers therefore resort to a multi-pronged approach to find security issues before …

Being the most popular programming language for develo** Ethereum smart contracts,
Solidity allows using inline assembly to gain fine-grained control. Although many empirical …

Formal methods for software development have made great strides in the last two decades,
to the point that their application in safety-critical embedded software is an undeniable …

Dynamic taint analysis is a popular program analysis technique in which sensitive data is
marked as tainted and the propagation of tainted data is tracked in order to determine …

This paper presents a study of x86-64 instruction usage across 9,337 C/C++ applications
and libraries in the Ubuntu 16.04 GNU/Linux distribution. We present metrics for reasoning …

Lack of memory safety in commonly used systems-level languages such as C and C++
results in a constant stream of new exploitable software vulnerabilities and exploit …

Background: In software development, the identification of source code file experts is an
important task. Identifying these experts helps to improve software maintenance and …

Lightweight cryptography is useful to provide security and privacy in resource constraint
embedded devices. Latency and memory consumption are the key elements in performance …

Inline assembly is still a common practice in low-level C programming, typically for efficiency
reasons or for accessing specific hardware resources. Such embedded assembly codes in …