We present DroidSafe, a static information flow analysis tool that reports potential leaks of
sensitive information in Android applications. DroidSafe combines a comprehensive …

In recent years, we have witnessed a revival of the use of recursive queries in a variety of
emerging application domains such as data integration and exchange, information …

You can write a compiler pass extending Soot, as either a BodyTransformer, for a
intraprocedural analysis; or SceneTransformer, for a whole-program analysis. You choose …

We present the DOOP framework for points-to analysis of Java programs. DOOP builds on
the idea of specifying pointer analysis algorithms declaratively, using Datalog: a logic-based …

Pointer analysis is a fundamental static program analysis, with a rich literature and wide
applications. The goal of pointer analysis is to compute an approximation of the set of …

Object-sensitivity has emerged as an excellent context abstraction for points-to analysis in
object-oriented languages. Despite its practical success, however, object-sensitivity is poorly …

We present a scalable and precise context-sensitive points-to analysis with three key
properties:(1) filtering out of unrealizable paths,(2) a context-sensitive heap abstraction, and …

Context-sensitive points-to analysis is valuable for achieving high precision with good
performance. The standard flavors of context-sensitivity are call-site-sensitivity (kCFA) and …

We present the results of an empirical study evaluating the precision of subset-based points-
to analysis with several variations of context sensitivity on Java benchmarks of significant …

Static information-flow analysis (especially taint-analysis) is a key technique in software
security, computing where sensitive or untrusted data can propagate in a program. Points-to …